Description
A weakness has been identified in D-link DIR-823G 1.0.2B05_20181207. Affected by this vulnerability is an unknown functionality of the file /etc/boa/boa.conf of the component Web Interface. Executing a manipulation can lead to least privilege violation. The attack can be launched remotely. The attack requires a high level of complexity. The exploitation appears to be difficult. The exploit has been made available to the public and could be used for attacks.
Problem types
Incorrect Privilege Assignment
Product status
Timeline
| 2026-07-09: | Advisory disclosed |
| 2026-07-09: | VulDB entry created |
| 2026-07-09: | VulDB entry last update |
Credits
L-14 (VulDB User)
References
vuldb.com/vuln/377213 (VDB-377213 | D-link DIR-823G Web boa.conf least privilege violation)
vuldb.com/vuln/377213/cti (VDB-377213 | CTI Indicators (IOB, IOC, TTP, IOA))
vuldb.com/cve/CVE-2026-15270 (CVE-2026-15270 | CVE Analysis and Report)
vuldb.com/submit/852314 (Submit #852314 | D-link DIR823G DIR823G V1.0.2B05_20181207 Misconfiguration in DIR823G)
app.notion.com/...a989080f2a043c60d2cfc7499?source=copy_link
www.dlink.com/