Описание
The Zyxel P-2602HW-D1A router with 3.40(AJZ.1) firmware provides different responses to admin page requests depending on whether a user is logged in, which allows remote attackers to obtain current login status by requesting an arbitrary admin URI.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:h:zyxel:p-2602hw-d1a:3.40\(ajz.1\):*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00283
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The Zyxel P-2602HW-D1A router with 3.40(AJZ.1) firmware provides different responses to admin page requests depending on whether a user is logged in, which allows remote attackers to obtain current login status by requesting an arbitrary admin URI.
EPSS
Процентиль: 51%
0.00283
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other