QSearchQSearch

CVE-2026-11492

4.3 MEDIUM

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05

Published: 2026-06-08 · Last updated: 2026-06-09

Severity and scoring

CVSS
4.3 MEDIUM
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
CWE
CWE-266, CWE-272

Affected products

VendorProduct
dlinkdir-823g_firmware

Description

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Performing a manipulation results in least privilege violation. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks.

Source: NVD

References

Related CVEs

Same vendor

  • CVE-2026-11555 A vulnerability was identified in D-Link DGS-1100-08PD 1.00.006 (3.7 LOW)
  • CVE-2026-11497 A vulnerability has been found in D-Link DCS-5615 1.01.00 (5.3 MEDIUM)
  • CVE-2026-11339 A vulnerability was detected in D-Link DWR-M920 up to 1.1.50 (6.3 MEDIUM)
  • CVE-2026-10878 A vulnerability was detected in D-Link DWR-M920 1.1.50/1.1.70 (6.3 MEDIUM)
  • CVE-2026-10270 A vulnerability was detected in D-Link DI-7001 MINI up to 19.09.19A1 (8.8 HIGH)

Same CWE

  • CVE-2026-11620 A security flaw has been discovered in TOTOLINK EX200 4.0.3c.7646 (5.3 MEDIUM)
  • CVE-2026-11619 A vulnerability was identified in Dolibarr ERP CRM up to 23.0.2 (6.3 MEDIUM)
  • CVE-2026-11555 A vulnerability was identified in D-Link DGS-1100-08PD 1.00.006 (3.7 LOW)
  • CVE-2026-11554 A vulnerability was determined in TOTOLINK CP450 4.1.0cu.747 (4.3 MEDIUM)
  • CVE-2026-11533 A security vulnerability has been detected in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 (5.4 MEDIUM)