Vulnerabilities > CVE-2022-46025 - Unspecified vulnerability in Totolink N200Re V5 Firmware 9.3.5U.6255B20211224

CVSS 9.1 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

totolink

critical

NVD

Published: 2024-01-10

Updated: 2024-01-17

Summary

Totolink N200RE_V5 V9.3.5u.6255_B20211224 is vulnerable to Incorrect Access Control. The device allows remote attackers to obtain Wi-Fi system information, such as Wi-Fi SSID and Wi-Fi password, without logging into the management page.

Vulnerable Configurations

Part	Description	Count
OS	Totolink Totolink N200Re V5 Firmware 9.3.5U.6255_B20211224	1
Hardware	Totolink Totolink N200Re V5 -	1

References

https://pastebin.com/aan5jT40