CVE-2024-7332 | TOTOLINK CP450 4.1.0cu.747_B20191224 Telnet Service product.ini hard-coded password

A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224. It has been classified as critical. This affects an unknown part of the file /web_cste/cgi-bin/product.ini of the component Telnet Service. The manipulation leads to use of hard-coded password.

This vulnerability is uniquely identified as CVE-2024-7332. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7332 | TOTOLINK CP450 4.1.0cu.747_B20191224 Telnet Service product.ini hard-coded password

Related Posts

CVE-2020-36838 | Facebook Chat Plugin up to 1.5 on WordPress wp_ajax_update_options access control

CVE-2024-2287 | Knight Lab Timeline Plugin up to 3.9.3.3 on WordPress Shortcode cross site scripting

CVE-2015-10130 | nik00726 Team Circle Image Slider with Lightbox Plugin 1.0 on WordPress cross-site request forgery

CVE-2024-3689 | Zhejiang Land Zongheng Network Technology O2OA up to 20240403 list information disclosure