Security Advisory

CVE-2024-42967

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-15 00:00:00

Last updated 2025-03-13 15:29:04

Assigner mitre

State PUBLISHED

Description

Incorrect access control in TOTOLINK LR350 V9.3.5u.6369_B20220309 allows attackers to obtain the apmib configuration file, which contains the username and the password, via a crafted request to /cgi-bin/ExportSettings.sh.

← Browse all CVEs View on cve.org ↗