Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:9 a.m.8 views

CVE-2019-19825

On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via an "topicurl":"setting/getSanvas" POST to the boafrm/formLogin URI, leading to a CAPTCHA bypass. Also, the CAPTCHA text is not needed once the attacker has determined valid credentials. The attacker can perform...

9.8CVSS6.7AI score0.29557EPSS
Exploits3References1
VulnCheck KEV
VulnCheck KEV
added 2024/02/23 12:0 a.m.6 views

VulnCheck KEV: CVE-2019-19825

On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via an "topicurl":"setting/getSanvas" POST to the boafrm/formLogin URI, leading to a CAPTCHA bypass. Also, the CAPTCHA text is not needed once the attacker has determined valid credentials. The attacker can...

9.8CVSS7.3AI score0.29557EPSS
Exploits3References1
Check Point Advisories
Check Point Advisories
added 2020/11/23 12:0 a.m.50 views

TOTOLINK Realtek SDK Routers Authentication Bypass (CVE-2019-19825)

An authentication bypass vulnerability exists in TOTOLINK Realtek SDK Routers. Successful exploitation of this vulnerability could allow a remote attacker to gain unauthorized access to the affected system...

7.5CVSS6.4AI score0.29557EPSS
Exploits3
Circl
Circl
added 2020/01/27 9:37 p.m.141 views

CVE-2019-19825

creationtimestamp| type| source ---|---|--- 2020-01-27 21:37:53+00:00| seen| https://t.me/cveNotify/459 2024-11-24 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-11-24 2024-12-14 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities -...

9.8CVSS7AI score0.29557EPSS
In wildExploits3References6
CVE
CVE
added 2020/01/27 4:50 p.m.106 views

CVE-2019-19825

Summary of CVE-2019-19825 (Realtek SDK / TOTOLINK routers) Authenticated CAPTCHA bypass vulnerability affecting Realtek SDK-based routers (TOTOLINK and others) via a POST to boafrm/formLogin with payload {"topicurl":"setting/getSanvas"}. The CAPTCHA text can be retrieved without authentication, e...

9.8CVSS9.3AI score0.29557EPSS
In wildExploits3References4Affected Software1
Rows per page
Query Builder