CVE-2026-2193 – This vulnerability allows remote attackers to e... (How to Fix)

Q: What is the severity of CVE-2026-2193?

CVE-2026-2193 has a CVSS score of 6.3 (MEDIUM). This vulnerability allows remote attackers to execute arbitrary commands on D-Link DI-7100G routers by injecting malicious input into the usb_username parameter of the set_jhttpd_info function. Affected systems are D-Link DI-7100G C1 routers running firmware version 24.04.18D1, potentially enabling complete device compromise.

📋 TL;DR

This vulnerability allows remote attackers to execute arbitrary commands on D-Link DI-7100G routers by injecting malicious input into the usb_username parameter of the set_jhttpd_info function. Affected systems are D-Link DI-7100G C1 routers running firmware version 24.04.18D1, potentially enabling complete device compromise.

💻 Affected Systems

Products:

D-Link DI-7100G C1

Versions: 24.04.18D1

Operating Systems: Embedded Linux

Default Config Vulnerable: ⚠️ Yes

Notes: Requires USB functionality to be enabled/accessible. Remote exploitation is confirmed possible.

📦 What is this software?

Di 7100g C1 Firmware by Dlink

View all CVEs affecting Di 7100g C1 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full router compromise allowing attacker to intercept all network traffic, install persistent backdoors, pivot to internal networks, and brick the device.

🟠

Likely Case

Router takeover enabling traffic interception, credential theft, and use as attack platform against internal systems.

🟢

If Mitigated

Limited impact if device is isolated, has restricted USB access, and network segmentation prevents lateral movement.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public GitHub repository contains vulnerability details and likely exploitation methods. Command injection via usb_username parameter is straightforward.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://www.dlink.com/

Restart Required: Yes

Instructions:

1. Check D-Link website for firmware updates. 2. Download latest firmware for DI-7100G C1. 3. Access router admin interface. 4. Navigate to firmware update section. 5. Upload and apply new firmware. 6. Reboot router.

🔧 Temporary Workarounds

Disable USB Services

all

Turn off USB functionality to remove attack vector

Access router admin interface
Navigate to USB settings
Disable all USB services

Network Segmentation

all

Isolate router from critical networks

Configure firewall rules to restrict router access
Place router in DMZ or isolated VLAN

🧯 If You Can't Patch

Disable WAN access to router admin interface
Implement strict network segmentation and monitor for suspicious USB-related activity

🔍 How to Verify

Check if Vulnerable:

Check firmware version in router admin interface under System Status or Firmware Update section

Check Version:

Login to router web interface and check System Information page

Verify Fix Applied:

Verify firmware version is updated beyond 24.04.18D1 and test USB functionality with controlled inputs

📡 Detection & Monitoring

Log Indicators:

Unusual USB configuration changes
Suspicious commands in system logs
Multiple failed authentication attempts to admin interface

Network Indicators:

Unexpected outbound connections from router
Traffic patterns suggesting command and control
Port scans originating from router

SIEM Query:

source="router_logs" AND ("usb_username" OR "set_jhttpd_info") AND command="*"

📊 Metadata

CVE ID: CVE-2026-2193

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.09% exploit probability (25.4th percentile)

Published: February 8, 2026

Last Updated: February 11, 2026

🔗 References

https://github.com/glkfc/IoT-Vulnerability/blob/main/D-Link/Dlink_4.md Exploit,Third Party Advisory
https://vuldb.com/?ctiid.344896 Permissions Required,VDB Entry
https://vuldb.com/?id.344896 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.749803 Third Party Advisory,VDB Entry
https://www.dlink.com/ Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-2193, you might also want to check these: