CVE-2018-10106

Name of the Vulnerable Software and Affected Versions D-Link DIR-815 REV. B versions through DIR-815 REVB FIRMWARE PATCH 2.07.B01

Description The issue concerns a permission bypass and information disclosure in the /htdocs/web/getcfg.php file of the D-Link DIR-815 REV. B firmware. This can be exploited through a specially crafted GET request, such as "/getcfg.php?a=%0a POST SERVICES%3DDEVICE.ACCOUNT%0aAUTHORIZED GROUP%3D1", allowing a remote attacker to disclose confidential information. The vulnerability is related to the lack of protection for service data.

Recommendations For D-Link DIR-815 REV. B versions through DIR-815 REVB FIRMWARE PATCH 2.07.B01, consider restricting access to the /htdocs/web/getcfg.php file until a patch is available. As a temporary workaround, avoid using the a parameter in the /getcfg.php endpoint to minimize the risk of exploitation.