Описание
An authentication weakness was identified in Omada Controllers, Gateways and Access Points, controller-device adoption due to improper handling of random values. Exploitation requires advanced network positioning and allows an attacker to intercept adoption traffic and forge valid authentication through offline precomputation, potentially exposing sensitive information and compromising confidentiality.
EPSS
Дефекты
Связанные уязвимости
An authentication weakness was identified in Omada Controllers, Gateways and Access Points, controller-device adoption due to improper handling of random values. Exploitation requires advanced network positioning and allows an attacker to intercept adoption traffic and forge valid authentication through offline precomputation, potentially exposing sensitive information and compromising confidentiality.
Уязвимость микропрограммного обеспечения сетевых шлюзов TP-Link Omada, связанная с использованием одностороннего хеширования с предсказуемыми случайными данными, позволяющая нарушителю получить несанкционированный доступ к конфиденциальной информации
EPSS