TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the cookie.
References
Link | Resource |
---|---|
https://yunus-shn.medium.com/tp-links-tl-wpa4220-v4-0-cleartext-credentials-in-cookie-7516a2649394 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
23 Jun 2021, 19:47
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://yunus-shn.medium.com/tp-links-tl-wpa4220-v4-0-cleartext-credentials-in-cookie-7516a2649394 - Exploit, Third Party Advisory | |
CPE | cpe:2.3:h:tp-link:tl-wpa4220:4.0:*:*:*:*:*:*:* cpe:2.3:o:tp-link:tl-wpa4220_firmware:4.0.2:build_20180308_rel.37064:*:*:*:*:*:* |
|
CWE | CWE-522 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
15 Jun 2021, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-06-15 22:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-28857
Mitre link : CVE-2021-28857
CVE.ORG link : CVE-2021-28857
JSON object : View
Products Affected
tp-link
- tl-wpa4220_firmware
- tl-wpa4220
CWE
CWE-522
Insufficiently Protected Credentials