First published: Tue Sep 06 2022(Updated: )
In TOTOLINK A3002R TOTOLINK-A3002R-He-V1.1.1-B20200824.0128 in the shadow.sample file, root is hardcoded in the firmware.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Totolink A3002r Firmware | =1.1.1-b20200824.0128 | |
TOTOLINK A3002R |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2022-40111.
CVE-2022-40111 has a severity rating of 9.8 (Critical).
The affected software version for CVE-2022-40111 is Totolink A3002r Firmware 1.1.1-b20200824.0128.
The CWE ID associated with CVE-2022-40111 is CWE-798.
No, TOTOLINK A3002R firmware version is not vulnerable to CVE-2022-40111.