2 matches found
CVE-2022-26672
ASUS WebStorage has a hardcoded API Token in the APP source code. An unauthenticated remote attacker can use this token to establish connections with the server and carry out login attempts to general user accounts. A successful login to a general user account allows the attacker to access, modif...
CVE-2022-26672
The CVE-2022-26672 entry concerns ASUS WebStorage where a hardcoded API token in the APP source enables an unauthenticated remote attacker to connect to the server and perform login attempts to general user accounts. A successful login allows access to, modification of, or deletion of user accoun...