There is an unauthorized access vulnerability in TP-LINK ER5120G 4.0 2.0.0 Build 210817 Rel.80868n, which allows attackers to obtain sensitive information of the device without authentication, obtain user tokens, and ultimately log in to the device backend management.
References
Link | Resource |
---|---|
https://github.com/7R4C4R/CVE/blob/main/TPLINK-TL-ER5120G/unauthorized%20access/Unauthorized%20Access%20Vulnerability.md | Exploit Third Party Advisory |
https://github.com/7R4C4R/CVE/blob/main/TPLINK-TL-ER5120G/unauthorized%20access/Unauthorized%20Access%20Vulnerability.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 08:23
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-20 22:15
Updated : 2024-11-21 08:23
NVD link : CVE-2023-43135
Mitre link : CVE-2023-43135
CVE.ORG link : CVE-2023-43135
JSON object : View
Products Affected
tp-link
- tl-er5120g
- tl-er5120g_firmware
CWE
CWE-862
Missing Authorization