CVE-2026-11555
LOW
2,9
Source: [email protected]
Attack Vector: network
Attack Complexity: high
Privileges Required: none
User Interaction: none
Confidentiality: N/A
Integrity: N/A
Availability: N/A
LOW
3,7
Source: [email protected]
Attack Vector: network
Attack Complexity: high
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: low
Availability: none
LOW
2,6
Source: [email protected]
Access Vector: network
Access Complexity: high
Authentication: none
Confidentiality: none
Integrity: partial
Availability: none
Description
AI Translation Available
A vulnerability was identified in D-Link DGS-1100-08PD 1.00.006. This issue affects some unknown processing of the file /etc/boa.conf of the component Web Interface. Such manipulation leads to least privilege violation. The attack may be launched remotely. The attack requires a high level of complexity. The exploitability is assessed as difficult. The exploit is publicly available and might be used.
266
Incorrect Privilege Assignment
DraftCommon Consequences
Security Scopes Affected:
Access Control
Potential Impacts:
Gain Privileges Or Assume Identity
Applicable Platforms
All platforms may be affected
272
Least Privilege Violation
IncompleteCommon Consequences
Security Scopes Affected:
Access Control
Confidentiality
Potential Impacts:
Gain Privileges Or Assume Identity
Read Application Data
Read Files Or Directories
Applicable Platforms
All platforms may be affected
https://vuldb.com/cve/CVE-2026-11555
https://vuldb.com/submit/834824
https://vuldb.com/vuln/369165
https://vuldb.com/vuln/369165/cti
https://www.dlink.com/
https://www.notion.so/D-link-DGS-1100-08PD-v1-00-006-3670ed14e5cb80848bc4e3129d…