CNNVD-202602-168 Information
Feb 02, 2026
cve
CNNVD ID
CNNVD-202602-168
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
EFM ipTIME A8004T是韩国EFM公司的一款无线路由器。 EFM ipTIME A8004T 14.18.2版本存在授权问题漏洞,该漏洞源于对文件/cgi/timepro.cgi中函数httpcon_check_session_url的错误操作,可能导致身份验证不当。
Description (English)
EFM iptime A8004T is a wireless router of the Korea company EFM. EFM ipTIME A8004T 14.18.2 has a mandate loophole, which stems from an error in the document/cgi/timepro.cgi function, httpcon check session url, which may lead to improper authentication.
Hazard Level
Medium
Vulnerability Type
授权问题
Affected Vendor
EFM
Published
2026-02-02
Last Modified
2026-02-24
References
https://github.com/LX-LX88/cve/issues/27 https://vuldb.com/?ctiid.343639 https://vuldb.com/?id.343639 https://vuldb.com/?submit.741422
Share on: