Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-28338

A login bypass in TOTOLINK A8000RU V7.1cu.643_B20200521 allows attackers to login to Administrator accounts via providing a crafted session cookie.

Published

2024-03-12T17:15:59.047

Last Modified

2025-04-03T13:16:47.727

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.0 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-284
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System totolink a8000ru_firmware 7.1cu.643_b20200521 Yes
Hardware totolink a8000ru - No
References