説明
EPON CPE-WiFi devices 2.0.4-X000 are vulnerable to escalation of privileges by sending cooLogin=1, cooUser=admin, and timestamp=-1 cookies.
AI分析AIによる分析
影響を受ける製品
cdatatecepon_cpe-wifi_devices_firmware
2.0.4-x000
cdatatecfd108bn
-
cdatatecfd111hz
-
cdatatecfd111y
-
cdatatecfd114y
-
cdatatecfd212gw
-
cdatatecfd212h
-
cdatatecfd214gh
-
cdatatecfd214gw
-
cdatatecfd404gh
-
cdatatecfd404gw
-
cdatatecfd600-104
-
cdatatecfd600-104g
-
cdatatecfd600-108f-hz500
-
cdatatecfd600-111g
-
cdatatecfd600-111gw
-
cdatatecfd600-301
-
cdatatecfd600-301gw
-
cdatatecfd600-304
-
cdatatecfd600-304ga-hr500
-
cdatatecfd600-304ga-hr511
-
cdatatecfd600-521g
-
参照
- https://www.reddit.com/r/networking/comments/abu4kq/vulnerability_in_cdata_technologies_epon_cpewifi/ExploitThird Party Advisory
- https://www.reddit.com/r/networking/comments/abu4kq/vulnerability_in_cdata_technologies_epon_cpewifi/ExploitThird Party Advisory