Unrated severityNVD Advisory· Published Nov 26, 2018· Updated Aug 5, 2024
CVE-2018-13315
CVE-2018-13315
Description
Incorrect access control in formPasswordSetup in TOTOLINK A3002RU version 1.0.8 allows attackers to change the admin user's password via an unauthenticated POST request.
Affected products
1Patches
Vulnerability mechanics
References
1- blog.securityevaluators.com/new-vulnerabilities-in-totolink-a3002ru-d6f42a081154mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.