Description
A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnap_service of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotely. The exploit has been made public and could be used.
Published: 2026-05-11
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A buffer overflow flaw in the SetDeviceSettings function of the HNAP Service on D-Link DCS‑935L devices occurs when the AdminPassword argument is crafted to overflow an internal buffer. The flaw can be triggered remotely, allowing an attacker to execute arbitrary code or take control of the device. The vulnerability is enumerated as CWE‑119 (Buffer Overflow) and CWE‑120 (Stack‑based Buffer Overflow).

Affected Systems

The flaw affects all D-Link DCS‑935L cameras whose firmware version is 1.10.01 or earlier. No other product models or firmware revisions are listed as vulnerable.

Risk and Exploitability

The CVSS score of 8.7 places the issue in the high severity range. No EPSS value is reported, and it is not catalogued in the CISA KEV list, but the public exploit demonstrates that remote attackers can leverage the overflow without authentication. Because it is a remote, unauthenticated vulnerability that triggers code execution, the risk to compromised premises is significant, especially in unprotected or exposed deployments.

Generated by OpenCVE AI on May 11, 2026 at 02:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade firmware to a version after 1.10.01
  • Disable or block the HNAP service to prevent remote access to hnap_service
  • Configure firewall or ACLs to restrict access to the affected endpoint

Generated by OpenCVE AI on May 11, 2026 at 02:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 11 May 2026 02:45:00 +0000

Type Values Removed Values Added
First Time appeared D-link
D-link dcs-935l
Vendors & Products D-link
D-link dcs-935l

Mon, 11 May 2026 01:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnap_service of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotely. The exploit has been made public and could be used.
Title D-Link DCS-935L HNAP Service hnap_service SetDeviceSettings buffer overflow
Weaknesses CWE-119
CWE-120
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

D-link Dcs-935l
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-11T01:15:09.977Z

Reserved: 2026-05-10T15:16:46.711Z

Link: CVE-2026-8260

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-11T02:16:27.583

Modified: 2026-05-11T15:06:08.253

Link: CVE-2026-8260

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-11T02:30:25Z

Weaknesses