CVE-2021-45735
First published: Fri Feb 04 2022(Updated: )
TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to use the HTTP protocol for authentication into the admin interface, allowing attackers to intercept user credentials via packet capture software.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Totolink X5000r Firmware | =9.1.0u.6118_b20201102 | |
| TOTOLINK X5000R |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for TOTOLINK X5000R?
The vulnerability ID for TOTOLINK X5000R is CVE-2021-45735.
What is the severity of CVE-2021-45735?
The severity of CVE-2021-45735 is high with a CVSS score of 7.5.
How does the vulnerability impact TOTOLINK X5000R?
The vulnerability allows attackers to intercept user credentials via packet capture software by exploiting the use of HTTP protocol for authentication in the admin interface.
What is the affected software version of TOTOLINK X5000R?
The affected software version of TOTOLINK X5000R is 9.1.0u.6118_B20201102.
Is TOTOLINK X5000R vulnerable to CVE-2021-45735?
Yes, TOTOLINK X5000R is vulnerable to CVE-2021-45735.
- collector/nvd-index
- agent/weakness
- agent/tags
- agent/type
- agent/event
- agent/references
- agent/author
- agent/description
- agent/severity
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/totolink
- canonical/totolink x5000r firmware
- version/totolink x5000r firmware/9.1.0u.6118_b20201102
- canonical/totolink x5000r