The D-Link DWR-M960 firmware is currently under significant scrutiny due to a high-severity security vulnerability identified in early 2026. This vulnerability, tracked as CVE-2026-2958
A buffer overflow vulnerability in the ping diagnostic feature ( /boafrm/formPingDiagnosticRun ) allows unauthenticated remote attackers to cause memory corruption. Dwr-m960 Firmware
: The firmware manages Dual-Band Wi-Fi (2.4GHz and 5GHz) and handles the AC1200 standard, allowing for combined speeds of up to 1200Mbps. Security Protocols The D-Link DWR-M960 firmware is currently under significant
: Patches fix overflows in multiple endpoints, including: NTP Configuration (CVE-2026-2854) Port Forwarding (CVE-2026-2857) DHCPv6 Configuration (CVE-2026-2960) VPN Configuration (CVE-2026-2961) Security Protocols : Patches fix overflows in multiple
: Download the correct firmware for your specific hardware revision (e.g., Revision Ax or Bx) from the D-Link Support Website . Use a wired Ethernet connection to avoid corruption during the transfer.
The device is out of NAND flash space due to excessive logs. Fix: