CVE Catalog

CVE-2026-11497

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.05%

16th percentile - higher than 16% of all known CVEs

Summary

A vulnerability has been found in D-Link DCS-5615 version 1.01.00, affecting an unknown functionality of the file /etc/conf.d/boa/boa.conf of the Boa Webserver component. Manipulation of this functionality leads to least privilege violation.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to system security.

Recommendation

It is recommended to update the software to the latest version and monitor the system for unauthorized activities.

Original NVD description (English source)

A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa Webserver. Such manipulation leads to least privilege violation. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS