CVE-2024-57045

Name of the Vulnerable Software and Affected Versions D-Link DIR-859 router versions A3 1.05 and earlier

Description A vulnerability in the D-Link DIR-859 router permits unauthorized individuals to bypass authentication. An attacker can obtain a user name and password by forging a post request to the "/getcfg.php" page.

Recommendations For D-Link DIR-859 router versions A3 1.05 and earlier, consider updating the firmware to a version later than A3 1.05 as a permanent solution. As a temporary workaround, consider restricting access to the "/getcfg.php" page to minimize the risk of exploitation.