3 matches found
CVE-2024-10654
A vulnerability has been found in TOTOLINK LR350 up to 9.3.5u.6369 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /formLoginAuth.htm. The manipulation of the argument authCode with the input 1 leads to authorization bypass. The attack can be...
CVE-2024-10654
CVE-2024-10654 affects TOTOLINK LR350 up to version 9.3.5u.6369. The issue is an authorization bypass in the /formLoginAuth.htm endpoint triggered by manipulating the authCode parameter (input 1). It is a remote vulnerability with exploits disclosed publicly. Remediation per sources is to upgrade...
CVE-2024-10654 TOTOLINK LR350 formLoginAuth.htm authorization
A vulnerability has been found in TOTOLINK LR350 up to 9.3.5u.6369 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /formLoginAuth.htm. The manipulation of the argument authCode with the input 1 leads to authorization bypass. The attack can be...