CVE-2018-10168

Posted on 2018년 5월 4일2018년 5월 4일 by admin

CVE-2018-10168

TP-Link EAP Controller and Omada Controller versions 2.5.4_Windows/2.6.0_Windows do not control privileges for usage of the Web API, allowing a low-privilege user to make any request as an Administrator. This is fixed in version 2.6.1_Windows.

Source: CVE-2018-10168

답글 남기기 응답 취소