Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TOTOLINK N200RE Telnet Service custom.conf password in configuration file
Vulnerability Description
A vulnerability classified as problematic has been found in TOTOLINK N200RE 9.3.5u.6255_B20211224. Affected is an unknown function of the file /squashfs-root/etc_ro/custom.conf of the component Telnet Service. The manipulation leads to password in configuration file. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. VDB-229374 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
配置文件中存储口令
Vulnerability Title
TOTOLINK N200RE 安全漏洞
Vulnerability Description
TOTOLINK N200RE是中国吉翁电子(TOTOLINK)公司的一个路由器。 TOTOLINK N200RE 9.3.5u.6255_B20211224版本存在安全漏洞,该漏洞源于Telnet 服务组件中的squashfs-root/etc_ro/custom.conf 存在未知功能,导致配置文件中的密码泄露。
CVSS Information
N/A
Vulnerability Type
N/A