A vulnerability was found in D-Link DI-7001 MINI up to 19.09.19A1 . It has been declared as critical . Impacted is the function sprintf of the file /httpd_debug.asp of the component API . The manipulation of the argument Time results in stack-based buffer overflow. This vulnerability was named CVE-2026-10270 . The attack may be performed from remote. In addition, an exploit is available.