exploitDog

GHSA-frjm-wvvg-4gw5

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

passwd_recovery.lua on the TP-Link Archer C9(UN)_V2_160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9(UN)_V2_170511.

passwd_recovery.lua on the TP-Link Archer C9(UN)_V2_160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9(UN)_V2_170511.

Ссылки

EPSS

Процентиль: 94%

0.13243

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-335

Связанные уязвимости

CVE-2017-11519

CVSS3: 9.8

nvd

больше 8 лет назад

passwd_recovery.lua on the TP-Link Archer C9(UN)_V2_160517 allows an attacker to reset the admin password by leveraging a predictable random number generator seed. This is fixed in C9(UN)_V2_170511.

EPSS

Процентиль: 94%

0.13243

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-335