CVE-2026-11555 PUBLISHED

A vulnerability was identified in D-Link DGS-1100-08PD 1.00.006. This issue affects some unknown processing of the file /etc/boa.conf of the component Web Interface. Such manipulation leads to least privilege violation. The attack may be launched remotely. The attack requires a high level of complexity. The exploitability is assessed as difficult. The exploit is publicly available and might be used.

• yinfantasy (VulDB User) reporter

• VDB-369165 | D-Link DGS-1100-08PD Web boa.conf least privilege violation
• VDB-369165 | CTI Indicators (IOB, IOC, TTP, IOA)
• CVE-2026-11555 | CVE Analysis and Report
• Submit #834824 | D-link DGS-1100-08PD v1.00.006 Misconfiguration
• https://www.notion.so/D-link-DGS-1100-08PD-v1-00-006-3670ed14e5cb80848bc4e3129dfafa29?source=copy_link
• https://www.dlink.com/

• Least Privilege Violation CWE
• Incorrect Privilege Assignment CWE