CVE-2026-11555

EUVD-2026-35178
A vulnerability was identified in D-Link DGS-1100-08PD 1.00.006. This issue affects some unknown processing of the file /etc/boa.conf of the component Web Interface. Such manipulation leads to least privilege violation. The attack may be launched remotely. The attack requires a high level of complexity. The exploitability is assessed as difficult. The exploit is publicly available and might be used.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.7 LOW
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
Affected Products (NVD)
VendorProductVersion
dlinkdgs-1100-08pd_firmware
1.00.006
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://vuldb.com/cve/CVE-2026-11555
https://vuldb.com/submit/834824
https://vuldb.com/vuln/369165
https://vuldb.com/vuln/369165/cti
https://www.dlink.com/
https://www.notion.so/D-link-DGS-1100-08PD-v1-00-006-3670ed14e5cb80848bc4e3129dfafa29?source=copy_link