CVE-2024-7332 | TOTOLINK CP450 4.1.0cu.747_B20191224 Telnet Service product.ini hard-coded password

A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224. It has been classified as critical. This affects an unknown part of the file /web_cste/cgi-bin/product.ini of the component Telnet Service. The manipulation leads to use of hard-coded password.

This vulnerability is uniquely identified as CVE-2024-7332. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7332 | TOTOLINK CP450 4.1.0cu.747_B20191224 Telnet Service product.ini hard-coded password

Related Posts

CVE-2023-24590 | Gallagher Controller 6000 prior 8.60.231116a Web Interface format string

CVE-2024-43614 | Microsoft

CVE-2024-48987 | Snipe-IT up to 7.0.9 APP_KEY Privilege Escalation

CVE-2024-2456 | Ecwid Ecommerce Shopping Cart Plugin up to 6.12.10 on WordPress Shortcode cross site scripting