ID

VAR-202607-1235


CVE

CVE-2026-15270


TITLE

D-Link Corporation of DIR-823G  Multiple vulnerabilities in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2026-023573

DESCRIPTION

A weakness has been identified in D-link DIR-823G 1.0.2B05_20181207. Affected by this vulnerability is an unknown functionality of the file /etc/boa/boa.conf of the component Web Interface. Executing a manipulation can lead to least privilege violation. The attack can be launched remotely. The attack requires a high level of complexity. The exploitation appears to be difficult. The exploit has been made available to the public and could be used for attacks. Performing an unauthorized operation could result in a breach of the principle of least privilege. Although it was thought to be difficult to exploit, exploits that can be used in attacks have already been made public.- All information handled by the software may be leaked to external parties. - All information handled by the software may be overwritten. - The software may completely shut down

Trust: 1.62

sources: NVD: CVE-2026-15270 // JVNDB: JVNDB-2026-023573

AFFECTED PRODUCTS

vendor:dlinkmodel:dir-823gscope:eqversion:1.0.2b05_20181207

Trust: 1.0

vendor:d linkmodel:dir-823gscope:eqversion:dir-823g firmware 1.0.2b05_20181207

Trust: 0.8

vendor:d linkmodel:dir-823gscope:eqversion: -

Trust: 0.8

vendor:d linkmodel:dir-823gscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2026-023573 // NVD: CVE-2026-15270

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com: CVE-2026-15270
value: MEDIUM

Trust: 1.0

OTHER: JVNDB-2026-023573
value: HIGH

Trust: 0.8

cna@vuldb.com: CVE-2026-15270
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:H/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

OTHER: JVNDB-2026-023573
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:H/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

cna@vuldb.com: CVE-2026-15270
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.6
impactScore: 5.9
version: 3.1

Trust: 1.0

OTHER: JVNDB-2026-023573
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2026-023573 // NVD: CVE-2026-15270

PROBLEMTYPE DATA

problemtype:CWE-266

Trust: 1.0

problemtype:CWE-272

Trust: 1.0

problemtype:Improper permission settings (CWE-266) [ others ]

Trust: 0.8

problemtype: Violation of least privilege (CWE-272) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2026-023573 // NVD: CVE-2026-15270

PATCH

title://vuldb.com/vuln/377213url:https://app.notion.com/p/DIR823G-V1-0-2B05_20181207-37a1f5ba989080f2a043c60d2cfc7499?source=copy_link

Trust: 0.8

sources: JVNDB: JVNDB-2026-023573

EXTERNAL IDS

db:NVDid:CVE-2026-15270

Trust: 2.6

db:JVNDBid:JVNDB-2026-023573

Trust: 0.8

sources: JVNDB: JVNDB-2026-023573 // NVD: CVE-2026-15270

REFERENCES

url:https://www.dlink.com/

Trust: 1.8

url:https://vuldb.com/vuln/377213/cti

Trust: 1.0

url:https://vuldb.com/submit/852314

Trust: 1.0

url:https://app.notion.com/p/dir823g-v1-0-2b05_20181207-37a1f5ba989080f2a043c60d2cfc7499?source=copy_link

Trust: 1.0

url:https://vuldb.com/vuln/377213

Trust: 1.0

url:https://vuldb.com/cve/cve-2026-15270

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2026-15270

Trust: 0.8

sources: JVNDB: JVNDB-2026-023573 // NVD: CVE-2026-15270

SOURCES

db:JVNDBid:JVNDB-2026-023573
db:NVDid:CVE-2026-15270

LAST UPDATE DATE

2026-07-15T23:22:56.433000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2026-023573date:2026-07-14T01:09:00
db:NVDid:CVE-2026-15270date:2026-07-13T13:09:00.920

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2026-023573date:2026-07-14T00:00:00
db:NVDid:CVE-2026-15270date:2026-07-09T20:16:28.887