CVE-2026-6947

HIGH

D-Link｜DWM-222W USB Wi-Fi Adapter - Brute-Force Protection Bypass

Title source: cna

Description

DWM-222W USB Wi-Fi Adapter developed by D-Link has a Brute-Force Protection Bypass vulnerability, allowing unauthenticated adjacent network attackers to bypass login attempt limits to perform brute-force attacks to gain control over the device.

References (2)

[Third Party Advisory] https://www.twcert.org.tw/tw/cp-132-10864-944b1-1.html

[Third Party Advisory] https://www.twcert.org.tw/en/cp-139-10865-de323-2.html

Scores

CVSS v3 7.5

EPSS 0.0006

EPSS Percentile 16.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-307

Status published

Products (1)

D-Link/DWM-222W < 1.02.00

Published Apr 24, 2026

Tracked Since Apr 24, 2026