A vulnerability classified as critical has been found in D-Link DI-8400 up to 16.07.26A1 . This affects an unknown function of the file /dbsrv.asp . Performing a manipulation of the argument str results in stack-based buffer overflow. This vulnerability is known as CVE-2026-10206 . Remote exploitation of the attack is possible. Furthermore, an exploit is available. The initial researcher advisory mentions contradicting parameter names to be affected.