CVE-2023-36092

Name of the Vulnerable Software and Affected Versions D-Link DIR-859 versions FW105b03

Description The issue is related to an authentication bypass in the D-Link DIR-859 router's firmware, specifically affecting the phpcgi main function. This allows remote attackers to gain escalated privileges. The vulnerability is noted to only affect products that are no longer supported by the maintainer.

Recommendations For D-Link DIR-859 version FW105b03, as a temporary workaround, consider disabling the phpcgi main function until a patch is available. However, since the products are no longer supported, this might be the only mitigation measure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.