CVE-2025-6916 - CERT CVE
ID CVE-2025-6916
Sažetak A vulnerability, which was classified as critical, was found in TOTOLINK T6 4.1.5cu.748_B20211015. This affects the function Form_Login of the file /formLoginAuth.htm. The manipulation of the argument authCode/goURL leads to missing authentication. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used.
Reference
CVSS
Base: 8.3
Impact: 10.0
Exploitability:6.5
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE COMPLETE COMPLETE
CVSS vektor AV:A/AC:L/Au:N/C:C/I:C/A:C
Zadnje važnije ažuriranje 30-06-2025 - 21:15
Objavljeno 30-06-2025 - 17:15