Authentication Bypass in D-Link GO-RT-AC750 Routers
CVE-2022-36526
7.5HIGH
What is CVE-2022-36526?
The D-Link GO-RT-AC750 series routers, specifically the GO-RT-AC750_revA v101b03 and GO-RT-AC750_revB_FWv200b02 versions, are susceptible to an authentication bypass vulnerability. This flaw arises from the improper handling of input in the phpcgi_main function located in the cgibin directory, allowing unauthorized users to gain access without valid credentials. Such access could potentially lead to configurations being altered or sensitive data being exposed. It is crucial for users to ensure their devices are updated to mitigate this risk.