A vulnerability labeled as critical has been found in D-Link DCS-935L 1.10.01 . This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler . Such manipulation of the argument data leads to format string. This vulnerability is traded as CVE-2026-12174 . The attack may be launched remotely. Furthermore, there is an exploit available.