Invia #269680: Totolink N350RT V9.3.5u.6255 Insufficient Session Expirationinformazioni

TitleTotolink N350RT V9.3.5u.6255 Insufficient Session Expiration
Description[NAME OF AFFECTED PRODUCT(S)] : Totolink N350RT [AFFECTED VERSION(S)] : V9.3.5u.6255 [PROBLEM TYPE] : Insufficient Session Expiration [CWE] : CWE-613: Insufficient Session Expiration [Affected source code file] : cstecgi.cgi(web : /cgi-bin/cstecgi.cgi) [DESCRIPTION]: The login token does not expire after logging out. Totolink indicates the vulnerability has been fully patched in version V9.3.5u.6255 and the latest patched version can be downloaded at https://www.totolink.net/home/menu/detail/menu_listtpl/products/id/206/ids/33.html
Source⚠️ https://drive.google.com/file/d/1OBs4kc1KvbqrMhQHs54WtwxxxiBoI0hL/view?usp=sharing
User
 lin7lic (UID 39301)
Submission18/01/2024 07:01 (1 Anno fa)
Moderation26/01/2024 13:40 (8 days later)
StatusAccettato
VulDB Entry252187 [Totolink N350RT 9.3.5u.6255 /cgi-bin/cstecgi.cgi autenticazione debole]
Points20

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!