CVE-2024-0769

Name of the Vulnerable Software and Affected Versions D-Link DIR-859 version 1.06B01

Description A critical vulnerability has been found in the D-Link DIR-859 router, affecting some unknown functionality of the file /hedwig.cgi of the component HTTP POST Request Handler. The manipulation of the service argument with the input ../../../../htdocs/webinc/getcfg/DHCPS6.BRIDGE-1.xml leads to path traversal. This issue allows an attacker to gain information within the device and potentially gain full control over it. The attack may be launched remotely. The estimated number of potentially affected devices worldwide is not specified. However, it is mentioned that threat actors are actively exploiting this vulnerability.

Recommendations As a temporary workaround, consider disabling the /hedwig.cgi file until a replacement device is installed. Replace the D-Link DIR-859 router with a supported device as soon as possible, since the vendor has confirmed that the product is end-of-life and no patch will be provided.