CVE-2022-29593

relay_cgi.cgi on Dingtian DT-R002 2CH relay devices with firmware 3.1.276A allows an attacker to replay HTTP post requests without the need for authentication or a valid signed/authorized request.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dingtian-tech:dt-r004_firmware:3.1.276a:*:*:*:*:*:*:*
cpe:2.3:h:dingtian-tech:dt-r004:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-07-14 15:15

Updated : 2024-02-28 19:29


NVD link : CVE-2022-29593

Mitre link : CVE-2022-29593

CVE.ORG link : CVE-2022-29593


JSON object : View

Products Affected

dingtian-tech

  • dt-r004
  • dt-r004_firmware
CWE
CWE-294

Authentication Bypass by Capture-replay