2 matches found
CVE-2023-46992
TOTOLINK A3300R V17.0.0cu.557B20221024 is vulnerable to Incorrect Access Control. Attackers are able to reset serveral critical passwords without authentication by visiting specific pages...
CVE-2023-46992
TOTOLINK A3300R, version 17.0.0cu.557_B20221024, is described as vulnerable to an Incorrect Access Control weakness. The issue allows an unauthenticated attacker to reset multiple critical passwords by visiting specific pages (e.g., /wizard.html and /phone/wizard.html). The root cause is an acces...