PT-2021-20872 · Ptcl · Ptcl Hg150-Ub
Published
2021-10-04
·
Updated
2022-01-05
·
CVE-2021-35296
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
PTCL HG150-Ub version 3.0
Description:
An issue in the administrator authentication panel allows attackers to bypass authentication via modification of the
cookie value and Response Path.Recommendations:
For PTCL HG150-Ub version 3.0, consider restricting access to the administrator authentication panel until a patch is available. As a temporary workaround, avoid using the authentication panel with modified
cookie values and Response Path to minimize the risk of exploitation.Exploit
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ptcl Hg150-Ub