Vulnerability Description
A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function ad_virtual_server_vdsl of the component Web Interface. Performing a manipulation of the argument Name results in cross site scripting. It is possible to initiate the attack remotely. The exploit is now public and may be used.
CVSS Score
LOW
Related Weaknesses (CWE)
References
- https://tzh00203.notion.site/D-Link-DSL6641K-version-N8-TR069-20131126-XSS-via-a
- https://vuldb.com/?ctiid.343510
- https://vuldb.com/?id.343510
- https://vuldb.com/?submit.742421
- https://www.dlink.com/
FAQ
What is CVE-2026-1705?
CVE-2026-1705 is a vulnerability with a CVSS score of 2.4 (LOW). A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the function ad_virtual_server_vdsl of the component Web Interface. Performing a manipulation of the argum...
How severe is CVE-2026-1705?
CVE-2026-1705 has been rated LOW with a CVSS base score of 2.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-1705?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.