CVE Catalog

CVE-2026-11492

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.02%

7th percentile - higher than 7% of all known CVEs

Summary

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05 in an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Manipulating this element results in least privilege violation.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to system security. The publicly available exploit increases the risk of attacks.

Recommendation

It is recommended to update the software to the latest version to mitigate this vulnerability. Additionally, monitor systems for unauthorized access attempts.

Original NVD description (English source)

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Performing a manipulation results in least privilege violation. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS