CVEbuzz logo
This website displays data collected from external sources, and is not responsible for any aspect of it. Read more...

Security / vulnerability advisories for TOTOLINK A702R Firmware 1.0.0-B20161227.1023

Titles listed in dictionary

CPE for product: cpe:2.3:o:totolink:a702r_firmware:1.0.0-b20161227.1023:*:*:*:*:*:*:*

Showing 1-1 of 1
Medium damage 5.5
Difficult to exploit
(other affected products) Published: Thu Jan 14 16:15:00 2021 UTC. Last Modified: Tue Jan 26 21:04:00 2021 UTC
CPE matches: cpe:2.3:o:totolink:a702r_firmware:1.0.0-b20161227.1023:*:*:*:*:*:*:*

Description

Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023 allows attacker to access /icons/ directories via GET Parameter.

Damage

Attack conditions

Damage and attack conditions obtained from CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N (CVSSv3)

Type of bug(s)

References