PT-2022-11730 · Totolink · Totolink Ex1200T

Published

2022-06-03

Updated

2022-06-13

CVE-2021-42886

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions TOTOLINK EX1200T version 4.1.2cu.5215

Description The issue allows an attacker to obtain the apmib configuration file without authorization. Usernames and passwords can be found in the decoded file.

Recommendations For TOTOLINK EX1200T version 4.1.2cu.5215, consider restricting access to the apmib configuration file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2021-42886

Affected Products

Totolink Ex1200T

PT-2022-11730 · Totolink · Totolink Ex1200T

CVE-2021-42886

Weakness Enumeration

Related Identifiers

Affected Products

References · 4