CVE-2024-7216 | TOTOLINK LR1200 9.3.1cu.2832 /etc/shadow.sample hard-coded password

Posted by Angelo Barbosa | Jul 29, 2024 | CVE

A vulnerability was found in TOTOLINK LR1200 9.3.1cu.2832. It has been classified as problematic. This affects an unknown part of the file /etc/shadow.sample. The manipulation leads to use of hard-coded password.

This vulnerability is uniquely identified as CVE-2024-7216. The attack needs to be initiated within the local network. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7216 | TOTOLINK LR1200 9.3.1cu.2832 /etc/shadow.sample hard-coded password

Related Posts

CVE-2024-32801 | ShapedPlugin Widget Post Slider Plugin up to 1.3.5 on WordPress cross site scripting

CVE-2024-38469 | zhimengzhe iBarn 1.5 Parameter /pay.php search cross site scripting

CVE-2024-1562 | WooCommerce Google Sheet Connector Plugin up to 1.3.11 on WordPress authorization

CVE-2023-47858 | Mattermost up to 8.1.6/9.0.4/9.1.3/9.2.2 Archived Public Channel deleted access control