Description
A vulnerability was identified in D-Link DCS-700L 1.03.09. The affected element is the function uploadmusic of the file /setUploadMusic of the component Music File Upload Service. The manipulation of the argument UploadMusic leads to path traversal. The attack can only be initiated within the local network. The exploit is publicly available and might be used. This vulnerability only affects products that are no longer supported by the maintainer.
Published: 2026-01-28
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Local File Access
Action: Replace Product
AI Analysis

Impact

A path traversal flaw in the setUploadMusic endpoint of the Music File Upload Service allows an attacker to manipulate the UploadMusic argument and access files beyond the intended directory. This can enable reading sensitive system files or writing arbitrary files if the service grants write permissions, potentially exposing configuration data or altering critical files. The vulnerability is tied to the fact that the upload function does not sanitize path segments, leading to direct traversal outside the designated folder.

Affected Systems

The flaw is reported for D‑Link DCS‑700L devices running firmware version 1.03.09. Only this version of the firmware is affected; newer or legacy firmware revisions are not listed as vulnerable.

Risk and Exploitability

The CVSS score of 4.8 indicates moderate severity, and the EPSS score of less than 1% suggests a low probability of exploitation. The vulnerability is hard‑coded to be exploitable only from devices within the same local network, so an attacker would need connectivity to that network to use the flaw. Because the target device is no longer supported and the flaw is not listed in the KEV catalog, the current risk is considered moderate but potentially significant for organizations still running the affected hardware.

Generated by OpenCVE AI on April 18, 2026 at 01:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Replace the D‑Link DCS‑700L unit with a supported model or a device that no longer uses the vulnerable firmware
  • If replacement is not possible, isolate the device on a dedicated VLAN and restrict traffic to trusted management IP addresses
  • Disable the Music File Upload Service or ensure that uploaded files are stored in a directory that does not allow execution or write access to system files

Generated by OpenCVE AI on April 18, 2026 at 01:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 05 Feb 2026 17:00:00 +0000

Type Values Removed Values Added
First Time appeared Dlink
Dlink dcs-700l
Dlink dcs-700l Firmware
CPEs cpe:2.3:h:dlink:dcs-700l:-:*:*:*:*:*:*:*
cpe:2.3:o:dlink:dcs-700l_firmware:*:*:*:*:*:*:*:*
Vendors & Products Dlink
Dlink dcs-700l
Dlink dcs-700l Firmware

Thu, 29 Jan 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared D-link
D-link dcs-700l
Vendors & Products D-link
D-link dcs-700l

Wed, 28 Jan 2026 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 28 Jan 2026 21:00:00 +0000

Type Values Removed Values Added
Description A vulnerability was identified in D-Link DCS-700L 1.03.09. The affected element is the function uploadmusic of the file /setUploadMusic of the component Music File Upload Service. The manipulation of the argument UploadMusic leads to path traversal. The attack can only be initiated within the local network. The exploit is publicly available and might be used. This vulnerability only affects products that are no longer supported by the maintainer.
Title D-Link DCS-700L Music File Upload Service setUploadMusic uploadmusic path traversal
Weaknesses CWE-22
References
Metrics cvssV2_0

{'score': 2.2, 'vector': 'AV:A/AC:L/Au:M/C:P/I:N/A:N/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 2.4, 'vector': 'CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 2.4, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P'}

Subscriptions

D-link Dcs-700l
Dlink Dcs-700l Dcs-700l Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-02-23T09:00:44.948Z

Reserved: 2026-01-28T13:28:05.800Z

Link: CVE-2026-1532

cve-icon Vulnrichment

Updated: 2026-01-28T21:44:04.014Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-28T21:16:10.703

Modified: 2026-04-29T01:00:01.613

Link: CVE-2026-1532

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T01:45:33Z

Weaknesses