Vulnerability: Unauthorized Password Reset in TOTOLINK A3300R V17.0.0cu.557_B20221024

Vulnerability: Unauthorized Password Reset in TOTOLINK A3300R V17.0.0cu.557_B20221024

CVE-2023-46992 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

TOTOLINK A3300R V17.0.0cu.557_B20221024 is vulnerable to Incorrect Access Control. Attackers are able to reset serveral critical passwords without authentication by visiting specific pages.

Learn more about our Cis Benchmark Audit For Server Software.