In TOTOLINK T6 V4.1.5cu.709_B20210518, there is a hard coded password for root in /etc/shadow.sample.
References
Link | Resource |
---|---|
https://github.com/whiter6666/CVE/blob/main/TOTOLINK_T6_V3/hard_code.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
17 Sep 2022, 02:22
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:totolink:t6_firmware:4.1.5cu.709_b20210518:*:*:*:*:*:*:* cpe:2.3:h:totolink:t6:3:*:*:*:*:*:*:* |
|
CWE | CWE-798 | |
First Time |
Totolink
Totolink t6 Firmware Totolink t6 |
|
References | (MISC) https://github.com/whiter6666/CVE/blob/main/TOTOLINK_T6_V3/hard_code.md - Exploit, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
16 Sep 2022, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-16 15:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-38823
Mitre link : CVE-2022-38823
CVE.ORG link : CVE-2022-38823
JSON object : View
Products Affected
totolink
- t6
- t6_firmware
CWE
CWE-798
Use of Hard-coded Credentials