TOTOLINK A3300R /etc/shadow.sample file hardcoded password vulnerability

The TOTOLINK A3300R is a wireless router manufactured by China's Gion Electronics TOTOLINK. The TOTOLINK A3300R is vulnerable to a hard-coded password vulnerability that originates from the use of hard-coded passwords in the /etc/shadow.sample file. No details of the vulnerability are provided at...

CVE-2024-7216

CVE-2024-7216 affects TOTOLINK LR1200, version 9.3.1cu.2832. The vulnerability resides in the file /etc/shadow.sample , where a hard-coded password is used. The issue is described as having high attack complexity and a difficult exploitability, with exploitation disclosed publicly per the sources...

CVE-2024-7216 TOTOLINK LR1200 shadow.sample hard-coded password

A vulnerability was found in TOTOLINK LR1200 9.3.1cu.2832. It has been classified as problematic. This affects an unknown part of the file /etc/shadow.sample. The manipulation leads to use of hard-coded password. The complexity of an attack is rather high. The exploitability is told to be...

CVE-2024-37644

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root...

CVE-2024-37644

CVE-2024-37644 affects TRENDnet TEW-814DAP v1 (FW1.01B01). A hardcoded password in /etc/shadow.sample enables root login. CVSS v3.1: 8.8 (Network, HIGH impact across Confidentiality, Integrity, Availability). No remediation details are provided in the connected documents; exploitation status is n...

CVE-2024-37644

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root...

CVE-2024-36782

TOTOLINK CP300 V2.0.4-B20201102 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root...

CVE-2024-35395

CVE-2024-35395 affects TOTOLINK CP900L (v4.1.5cu.798_B20221228). A hardcoded password in /etc/shadow.sample allows an attacker to log in as root. Impact is root access with high severity (CVSS v3.1: 8.8; Network attack, low privileges required, no user interaction). Connected sources confirm the ...

CVE-2024-31810

TOTOLINK EX200 V4.0.3c.7646B20201211 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

CVE-2024-31810

The CVE-2024-31810 entry affects TOTOLINK EX200 with version 4.0.3c.7646_B20201211, where a hardcoded root password exists in the file /etc/shadow.sample. This root-credential vulnerability enables high-privilege access and aligns with the documented CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I...

CVE-2023-42336

An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote attacker to execute arbitrary code and obtain sensitive information via the password parameter in the /etc/shadow.sample component...

Design/Logic Flaw

An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote attacker to execute arbitrary code and obtain sensitive information via the password parameter in the /etc/shadow.sample component...

CVE-2023-42336

An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote attacker to execute arbitrary code and obtain sensitive information via the password parameter in the /etc/shadow.sample component...

CVE-2022-38823

In TOTOLINK T6 V4.1.5cu.709B20210518, there is a hard coded password for root in /etc/shadow.sample...

Hardcoded credentials

In TOTOLINK T6 V4.1.5cu.709B20210518, there is a hard coded password for root in /etc/shadow.sample...

CVE-2022-38823

In TOTOLINK T6 V4.1.5cu.709B20210518, there is a hard coded password for root in /etc/shadow.sample...

CVE-2022-37841

In TOTOLINK A860R V4.1.2cu.5182B20201027 there is a hard coded password for root in /etc/shadow.sample...

Hardcoded credentials

In TOTOLINK A860R V4.1.2cu.5182B20201027 there is a hard coded password for root in /etc/shadow.sample...

CVE-2022-37841

CVE-2022-37841 affects TOTOLINK A860R (v4.1.2cu.5182_B20201027). The issue is a hard-coded root password stored in /etc/shadow.sample, enabling potential unauthorized root access. Connected sources confirm the model and file, with Red Hat and other feeds reiterating the same root password disclos...

TOTOLINK N600R Hardcoded Vulnerability

TOTOLINK N600R is a dual-band wireless router launched by Korean brand TOTOLINK in 2013, which supports 2.4GHz and 5GHz dual-band concurrency with a maximum wireless transmission rate of 300Mbps. The TOTOLINK N600R suffers from a hard-coded vulnerability that originates from the inclusion of a...