C0Nyy

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 B20211015 Description: A critical vulnerability was found in the TOTOLINK T6, affecting the `Form Login` function of the file `/formLoginAuth.htm`. The manipulation of the `authCode`/`goURL` argument leads to missing authentication. The attack must be initiated within the local network. The exploit has been disclosed to the public and may be used. Recommendations: As a temporary workaround, consider disabling the `Form Login` function until a patch is available. Restrict access to the `/formLoginAuth.htm` file to minimize the risk of exploitation. Avoid using the `authCode`/`goURL` argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK LR350 versions up to 9.3.5u.6369 **Description** A critical issue is related to the authorization procedure, specifically with the handling of the `authCode` parameter. This can allow a remote attacker to bypass security restrictions. The vulnerability affects an unknown functionality of the file /formLoginAuth.htm. Manipulating the `authCode` argument with the input 1 leads to authorization bypass. The attack can be launched remotely. **Recommendations** For TOTOLINK LR350 versions up to 9.3.5u.6369, upgrade to version 9.3.5u.6698 B20230810 to address this issue. As a temporary workaround, consider restricting access to the /formLoginAuth.htm file and avoiding manipulation of the `authCode` parameter until the upgrade is applied.