| tiêu đề | Totolink T8 V4.1.5cu.833_20220905 Insufficient Session Expiration |
|---|
| Mô tả | [NAME OF AFFECTED PRODUCT(S)] : Totolink T8
[AFFECTED VERSION(S)] : V4.1.5cu.833_20220905
[PROBLEM TYPE] : Insufficient Session Expiration
[CWE] : CWE-613: Insufficient Session Expiration
[Affected source code file] : cstecgi.cgi(web : /cgi-bin/cstecgi.cgi)
[DESCRIPTION]:
The login token does not expire after logging out.
Totolink indicates the vulnerability has been fully patched in version 4.1.5cu.862_B20230228 and the latest patched version can be downloaded at https://download.totolink.tw/uploads/firmware/T8/TOTOLINK_T8_V4.1.5cu.862_B20230228.zip |
|---|
| Nguồn | ⚠️ https://drive.google.com/file/d/1YPisSnxM5CwSLKFgs9w5k5MtNUgiijVo/view?usp=sharing |
|---|
| Người dùng | lin7lic (UID 39301) |
|---|
| Đệ trình | 18/01/2024 07:02 (cách đây 2 những năm) |
|---|
| Kiểm duyệt | 26/01/2024 13:41 (8 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 252188 [Totolink T8 4.1.5cu.833_20220905 /cgi-bin/cstecgi.cgi xác thực yếu] |
|---|
| điểm | 20 |
|---|