CVE-2021-46008

Name of the Vulnerable Software and Affected Versions totolink a3100r version V5.9c.4577

Description The issue concerns a hard-coded telnet password in the official released firmware, which can be easily discovered. An attacker connected to the Wi-Fi can exploit this by telnetting into the target with root shell if the telnet function is turned on.

Recommendations For totolink a3100r version V5.9c.4577, consider disabling the telnet function as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.