Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-34573: CVE_Request/WiFi-Repeater_mb_wifibasic.md at main · pghuanghui/CVE_Request

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to arbitrarily configure device settings via accessing the page mb_wifibasic.shtml.

CVE
Open in Source
#vulnerability#auth#wifi

0x01 Vulnerability description

A vulnerability is in the ‘mb_wifibasic.shtml’ page of the Wavlink-WiFi-Repeater,Firmware package version RPTA2-77W.M4300.01.GD.2017Sep19,Visit the constructed page to get the Wi-Fi Basic Setting, and you can set the WiFi at the same time.

Unauthorized users can obtain the key information of the router by visiting:

http://xxx.xxx.xxx.xxx/mb_wifibasic.shtml

0x02 Affected version****0x03 Vulnerability

This page does not have access permissions set

0x04 PoC verification

0x05 Acknowledgement

Penwei.Huang

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE