Описание
TOTOLINK CP900L v4.1.5cu.798_B20221228 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:totolink:cp900l_firmware:4.1.5cu.798_b20221228:*:*:*:*:*:*:*
cpe:2.3:h:totolink:cp900l:-:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00145
Низкий
8.8 High
CVSS3
Дефекты
CWE-259
EPSS
Процентиль: 35%
0.00145
Низкий
8.8 High
CVSS3
Дефекты
CWE-259