EUVD-2026-35027
GHSA-63hq-54rp-qh3p
Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
2DescriptionCVE.org
A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa Webserver. Such manipulation leads to least privilege violation. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
AnalysisAI
Unauthenticated remote exploitation of the Boa embedded web server on the D-Link DCS-5615 IP camera (firmware 1.01.00) allows attackers to violate the principle of least privilege via manipulation of the /etc/conf.d/boa/boa.conf configuration component. The CVSS 4.0 vector confirms network-reachable, zero-complexity, no-authentication access with an active proof-of-concept exploit publicly available. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | The Boa web server on the DCS-5615 must be network-reachable - the CVSS vector confirms AV:N/AC:L/AT:N/PR:N/UI:N, meaning no authentication, no user interaction, and no special network position (e.g., same subnet) is required; direct internet exposure is sufficient. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS 4.0 base score of 5.5 (Medium) is shaped by a low integrity impact (VI:L) and no confidentiality or availability impact in the primary scope, which tempers the raw severity. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker conducting opportunistic scanning of internet-exposed D-Link DCS-5615 cameras on port 80 or 8080 identifies a target running firmware 1.01.00. Using the publicly available proof-of-concept (referenced via the Notion link in CVE references), the attacker sends a crafted HTTP request to the Boa web server that manipulates or abuses the `/etc/conf.d/boa/boa.conf` configuration handling, triggering the least privilege violation and gaining access to functionality or data beyond their authorization level - potentially including camera configuration, stored credentials, or network settings. |
| Remediation | No vendor-released patch has been identified at time of analysis - the D-Link reference (https://www.dlink.com/) in the CVE record does not link to a specific security advisory for this CVE. … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
More from same product – last 7 days
Share
External POC / Exploit Code
Leaving vuln.today