CVE-2022-4607620.12.2022, 17:15D-Link DIR-869 DIR869Ax_FW102B15 is vulnerable to Authentication Bypass via phpcgi.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST7.5 HIGHNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NmitreCNA------CVEADP------CISA-ADPADP7.5 HIGHNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NBase ScoreCVSS 3.xEPSS ScorePercentile: 79%Known Exploits!https://github.com/Zarathustra-L/IoT_Vul/tree/main/D-Link/DIR-869https://github.com/Zarathustra-L/IoT_Vul/tree/main/D-Link/DIR-869Common Weakness EnumerationCWE-863 - Incorrect AuthorizationThe software performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.Referenceshttps://github.com/Zarathustra-L/IoT_Vul/tree/main/D-Link/DIR-869https://www.dlink.com/en/security-bulletin/https://github.com/Zarathustra-L/IoT_Vul/tree/main/D-Link/DIR-869https://www.dlink.com/en/security-bulletin/