exploitDog

GHSA-45m8-2rw6-c6j3

Опубликовано: 01 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

In Totolink A3100R V5.9c.4577, multiple pages can be read by curl or Burp Suite without authentication. Additionally, admin configurations can be set without cookies.

In Totolink A3100R V5.9c.4577, multiple pages can be read by curl or Burp Suite without authentication. Additionally, admin configurations can be set without cookies.

Ссылки

EPSS

Процентиль: 77%

0.0102

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-306

Связанные уязвимости

CVE-2021-46009

CVSS3: 9.8

nvd

почти 4 года назад

In Totolink A3100R V5.9c.4577, multiple pages can be read by curl or Burp Suite without authentication. Additionally, admin configurations can be set without cookies.

EPSS

Процентиль: 77%

0.0102

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-306