An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the telnet password via accessing the page tftp.txt.
The web application does not adequately enforce appropriate authorization on all restricted URLs, scripts, or files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Wifi-repeater_firmware | Wavlink | rpta2-77w.m4300.01.gd.2017sep19 (including) | rpta2-77w.m4300.01.gd.2017sep19 (including) |