CVE-2021-42886Sensitive Information Exposure in Ex1200t Firmware

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
7.5HIGHNVD
EPSS
1.0%
top 23.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Totolink Ex1200t Firmware
Timeline
PublishedJun 3
Latest updateJun 4

Description

TOTOLINK EX1200T V4.1.2cu.5215 contains an information disclosure vulnerability where an attacker can get the apmib configuration file without authorization, and usernames and passwords can be found in the decoded file.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDtotolink/ex1200t_firmware4.1.2cu.5215

🔴Vulnerability Details

2
GHSA
GHSA-ghvw-433v-4746: TOTOLINK EX1200T V42022-06-04
CVEList
CVE-2021-42886: TOTOLINK EX1200T V42022-06-03
CVE-2021-42886 — Sensitive Information Exposure | cvebase