CVE-2026-11555
LowCVSS 3.7Exploitation Probability (EPSS)
Low risk16th percentile — higher than 16% of all known CVEs
Summary
A vulnerability was identified in D-Link DGS-1100-08PD 1.00.006, affecting unknown processing of the file /etc/boa.conf in the web interface. Such manipulation leads to least privilege violation.
Risk Assessment
The attack may be launched remotely and requires a high level of complexity. Although the exploitability is assessed as difficult, the availability of a public exploit increases the risk.
Recommendation
It is recommended to update the device to the latest firmware version to minimize the risk associated with this vulnerability.
Original NVD description (English source)
A vulnerability was identified in D-Link DGS-1100-08PD 1.00.006. This issue affects some unknown processing of the file /etc/boa.conf of the component Web Interface. Such manipulation leads to least privilege violation. The attack may be launched remotely. The attack requires a high level of complexity. The exploitability is assessed as difficult. The exploit is publicly available and might be used.

