An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the key information of the device via accessing Tftpd32.ini.
The web application does not adequately enforce appropriate authorization on all restricted URLs, scripts, or files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Wifi-repeater_firmware | Wavlink | rpta2-77w.m4300.01.gd.2017sep19 (including) | rpta2-77w.m4300.01.gd.2017sep19 (including) |