CVE-2021-44032
Last modified
CVE-2021-44032 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. TP-Link Omada SDN Software Controller before 5.0.15 does not check if the authentication method specified in a connection request is allowed. An attacker can bypass the captive portal authentication process by using the downgraded "no authentication" method, and access the protected network. EPSS estimates a 1.76% chance of exploitation in the next 30 days.
Description
TP-Link Omada SDN Software Controller before 5.0.15 does not check if the authentication method specified in a connection request is allowed. An attacker can bypass the captive portal authentication process by using the downgraded "no authentication" method, and access the protected network. For example, the attacker can simply set window.authType=0 in client-side JavaScript.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Tp-Link | Omada Software Controller | < 5.0.15 |
References
- https://github.com/Orange-Cyberdefense/CVE-repository/blob/master/PoCs/POC_CVE-2021-44032_Kevin.mdExploit, Third Party Advisory
- https://www.tp-link.com/us/omada-sdn/Vendor Advisory
- https://www.tp-link.com/us/securityVendor Advisory
- https://github.com/Orange-Cyberdefense/CVE-repository/blob/master/PoCs/POC_CVE-2021-44032_Kevin.mdExploit, Third Party Advisory
- https://www.tp-link.com/us/omada-sdn/Vendor Advisory
- https://www.tp-link.com/us/securityVendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-44032?
How severe is CVE-2021-44032?
How do I fix CVE-2021-44032?
Are you affected by CVE-2021-44032?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST