CVE-2026-7027 — LOW (2.4) — White Hats Nepal

Vulnerability Description

A vulnerability was identified in D-Link DSL-2740R EU_01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and might be used.

CVSS Score

2.4

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Dlink	Dsl-2740R Firmware	eu_01.15
Dlink	Dsl-2740R	-

Related Weaknesses (CWE)

CWE-94 CWE-79

References

https://vuldb.com/submit/797896Third Party AdvisoryVDB Entry
https://vuldb.com/vuln/359607Third Party AdvisoryVDB Entry
https://vuldb.com/vuln/359607/ctiPermissions RequiredVDB Entry
https://www.dlink.com/Product

FAQ

What is CVE-2026-7027?

CVE-2026-7027 is a vulnerability with a CVSS score of 2.4 (LOW). A vulnerability was identified in D-Link DSL-2740R EU_01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to c...

How severe is CVE-2026-7027?

CVE-2026-7027 has been rated LOW with a CVSS base score of 2.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-7027?

Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dsl-2740R Firmware, Dlink Dsl-2740R.