In TOTOLINK EX1200T V4.1.2cu.5215, an attacker can bypass login by sending a specific request through formLoginAuth.htm.
References
Link | Resource |
---|---|
https://github.com/p1Kk/vuln/blob/main/totolink_ex1200t_login_bypass.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
13 Jun 2022, 18:31
Type | Values Removed | Values Added |
---|---|---|
First Time |
Totolink
Totolink ex1200t Totolink ex1200t Firmware |
|
References | (MISC) https://github.com/p1Kk/vuln/blob/main/totolink_ex1200t_login_bypass.md - Exploit, Third Party Advisory | |
CWE | NVD-CWE-noinfo | |
CPE | cpe:2.3:o:totolink:ex1200t_firmware:4.1.2cu.5215:*:*:*:*:*:*:* cpe:2.3:h:totolink:ex1200t:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
03 Jun 2022, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-03 12:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-42887
Mitre link : CVE-2021-42887
CVE.ORG link : CVE-2021-42887
JSON object : View
Products Affected
totolink
- ex1200t
- ex1200t_firmware
CWE