Name of the Vulnerable Software and Affected Versions:

TOTOLINK T10 version 4.1.8cu.5241 B20210927

Description:

A vulnerability exists in TOTOLINK T10 version 4.1.8cu.5241 B20210927 related to improper authentication. The issue is located in the `/formLoginAuth.htm` file and involves the manipulation of the `authCode` argument with the input `1`. The attack can be initiated remotely. The exploit has been publicly disclosed.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.