CVE-2024-34211
8.8HIGHTOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root.
Publicado: 5/14/2024Actualizado: 4/9/2025
Descripción
TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root.
Análisis IAImpulsado por IA
Productos Afectados
totolinkcp450_firmware
4.1.0cu.747_b20191224
totolinkcp450
-
Referencias
- https://github.com/n0wstr/IOTVuln/tree/main/CP450/HardCodeRootExploitThird Party Advisory
- https://github.com/n0wstr/IOTVuln/tree/main/CP450/HardCodeRootExploitThird Party Advisory