.. / CVE-2021-35336

Exploit for Tieline IP Audio Gateway <=2.6.4.8 - Unauthorized Remote Admin Panel Access (CVE-2021-35336)

Description:

Tieline IP Audio Gateway 2.6.4.8 and below is affected by a vulnerability in the web administrative interface that could allow an unauthenticated user to access a sensitive part of the system with a high privileged account.

Nuclei Template

View the template here CVE-2021-35336.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-35336.yaml

References:

https://pratikkhalane91.medium.com/use-of-default-credentials-to-unauthorised-remote-access-of-internal-panel-of-tieline-c1ffe3b3757c
https://github.com/ARPSyndicate/cvemon
https://github.com/ARPSyndicate/kenzer-templates
https://nvd.nist.gov/vuln/detail/CVE-2021-35336

.. / CVE-2021-35336 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Tieline IP Audio Gateway <=2.6.4.8 - Unauthorized Remote Admin Panel Access (CVE-2021-35336)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-35336