Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On Arris Touchstone Telephony Gateway TG1682G 9.1.103J6 devices, a logout action does not immediately destroy all state on the device related to the validity of the "credential" cookie, which might make it easier for attackers to obtain access at a later time (e.g., "at least for a few minutes"). NOTE: there is no documentation stating that the web UI's logout feature was supposed to do anything beyond removing the cookie from one instance of a web browser; a client-side logout action is often not intended to address cases where a person has made a copy of a cookie outside of a browser.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Arris Touchstone Telephony Gateway TG1682G 安全漏洞
Vulnerability Description
Arris Touchstone Telephony Gateway TG1682G是美国Arris集团公司的一款Modem(调制解调器)路由器一体机。 Arris Touchstone Telephony Gateway TG1682G 9.1.103J6版本中存在安全漏洞,该漏洞源于注销操作没有立刻清除设备上的所有状态。攻击者可利用该漏洞获取访问权限。
CVSS Information
N/A
Vulnerability Type
N/A