{"vulnerability": "CVE-2026-12174", "sightings": [{"uuid": "4b37349e-f25b-4825-98ab-b29b8dfee846", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12174", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116741210849212111", "content": "We have just added an important vulnerability affecting D-Link DCS-935L (CVE-2026-12174) https://vuldb.com/vuln/370815", "creation_timestamp": "2026-06-13T05:45:11.990080Z"}, {"uuid": "0c8acf70-84d2-410c-a291-2a28a7e2379a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12174", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116750154113288207", "content": "Our CTI team identified a lot of activities targeting D-Link DCS-935L (CVE-2026-12174) https://vuldb.com/vuln/370815/cti", "creation_timestamp": "2026-06-14T19:39:35.092953Z"}, {"uuid": "b9bf2288-9c73-4a84-a123-acbccc9534f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12174", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo7faoanvg2o", "content": "CVE-2026-12174 - D-Link DCS-935L HTTP rhea snprintf format string\nCVE ID : CVE-2026-12174\n \n Published : June 13, 2026, 9:16 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function sn...", "creation_timestamp": "2026-06-13T23:17:50.063738Z"}, {"uuid": "34844c6d-7022-4b4e-b072-6e3483c8396e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12174", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116746225135624312", "content": "\u26a0\ufe0f CVE-2026-12174 (HIGH, CVSS 8.7): D-Link DCS-935L v1.10.01 has a format string vuln in /web/cgi-bin/greece/rhea. Remote attackers can exploit for code execution or DoS. No patch available \u2014 restrict device exposure. https://radar.offseq.com/threat/cve-2026-12174-format-string-in-d-link-dcs-935l-c57b0481 #OffSeq #Vulnerability #IoT", "creation_timestamp": "2026-06-14T03:00:25.360139Z"}]}