CVE-2026-11497 PUBLISHED

A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa Webserver. Such manipulation leads to least privilege violation. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

• yinfantasy (VulDB User) reporter

• VDB-369117 | D-Link DCS-5615 Boa Webserver boa.conf least privilege violation
• VDB-369117 | CTI Indicators (IOB, IOC, TTP, IOA)
• CVE-2026-11497 | CVE Analysis and Report
• Submit #834823 | D-link DCS-5615 1.01.00 Misconfiguration
• https://www.notion.so/D-link-DCS-5615_REV_1-01-00-3670ed14e5cb80e9be78f7d8dbf1e789?source=copy_link
• https://www.dlink.com/

• Least Privilege Violation CWE
• Incorrect Privilege Assignment CWE