CRITICAL🇵🇱 Wersja polska

CVE-2024-31810

CVSS 9.8v3.1pub. 2024-05-14upd. 2025-04-09

TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

🤖 AI Analysis
How it works

The manufacturer embedded a static, unchanging password for the root account in the firmware image, stored in the /etc/shadow.sample file. Since the password is identical across all devices with a given software version, an attacker who learns it (e.g., through firmware analysis) can log in to the root account on any vulnerable device. The vulnerability is classified as CWE-798 (use of hardcoded credentials) and CWE-259 (hardcoded password).

Impact

An attacker gains full administrator (root) privileges on the device, enabling complete takeover of the router/extender, modification of its configuration, interception of network traffic, and potential use of the device as an entry point to the local network.

Mitigation & patch

Apply patches available from the manufacturer according to the references. Until an update is obtained, it is recommended to restrict access to the device management interface exclusively from trusted network segments and isolate the device from critical network resources.

Who is affected

TOTOLINK EX200 with firmware version V4.0.3c.7646_B20201211

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Totolink Ex200

    HW
    Totolink
    wszystkie wersje
  • Totolink Ex200 Firmware

    OS
    Totolink
    4.0.3c.7646_b20201211
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-31807CRITICAL9.8PL ✓ten sam produkt

RCE w TOTOLINK EX200 poprzez parametr hostTime w funkcji NTPSyncWithHost

CVE-2024-31815CRITICAL9.1PL ✓ten sam produkt

TOTOLINK EX200 – nieautoryzowany dostęp do pliku konfiguracyjnego

CVE-2021-43711CRITICAL9.8ten sam produkt

The downloadFlile.cgi binary file in TOTOLINK EX200 V4.0.3c.7646_B20201211 has a command injection vulnerabili...

CVE-2024-7335HIGH8.7ten sam produkt

A vulnerability classified as critical has been found in TOTOLINK EX200 4.0.3c.7646_B20201211. Affected is the...

CVE-2024-7336HIGH8.7ten sam produkt

A vulnerability classified as critical was found in TOTOLINK EX200 4.0.3c.7646_B20201211. Affected by this vul...