CVE-2024-34211
8.8HIGHTOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root.
Veröffentlicht: 5/14/2024Aktualisiert: 4/9/2025
Beschreibung
TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root.
KI-AnalyseKI-gestützt
Betroffene Produkte
totolinkcp450_firmware
4.1.0cu.747_b20191224
totolinkcp450
-
Referenzen
- https://github.com/n0wstr/IOTVuln/tree/main/CP450/HardCodeRootExploitThird Party Advisory
- https://github.com/n0wstr/IOTVuln/tree/main/CP450/HardCodeRootExploitThird Party Advisory