CVE-2025-6139 – TOTOLINK T10 Hard-Coded Password Vulnerability

June 16, 2025

CVE ID : CVE-2025-6139

Published : June 16, 2025, 9:15 p.m. | 31 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in TOTOLINK T10 4.1.8cu.5207. Affected by this issue is some unknown functionality of the file /etc/shadow.sample. The manipulation leads to use of hard-coded password. The attack can only be initiated within the local network. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.

Severity: 3.9 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6132 – “Chanjet CRM SQL Injection Vulnerability”

Next Article CVE-2025-47951 – Weblate Second Factor OTP Guessing Vulnerability

Modernizing your approach to governance, risk and compliance

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

Parasoft C/C++test 2025.1, Secure Code Warrior AI Security Rules, and more – Daily News Digest

What I Wish Someone Told Me When I Was Getting Into ARIA

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Sam Altman says OpenAI could need a “significant fraction” of the Earth’s power for future artificial intelligence computing

Microsoft’s Windows 95 testing phase was so intense that it crashed cash registers with over $10,000 worth of software

The biggest rival for Microsoft’s Xbox Ally is Valve’s Steam Deck, not Switch 2, so stop comparing the wrong gaming handhelds

Microsoft Copilot for Power Platform

Microsoft Copilot for Power Platform

Integrate Coveo Atomic CLI-Based Hosted Search Page into Adobe Experience Manager (AEM)

Mastering TypeScript: Your Ultimate Guide to Types, Inference & Compatibility

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Sam Altman says OpenAI could need a “significant fraction” of the Earth’s power for future artificial intelligence computing

Microsoft’s Windows 95 testing phase was so intense that it crashed cash registers with over $10,000 worth of software

CVE-2025-6139 – TOTOLINK T10 Hard-Coded Password Vulnerability

CISA Flags CVE-2023-0386 as Actively Exploited Linux Kernel Privilege Escalation Threat

Cyberagentschap VS meldt actief misbruik van lek in Linux-kernel

Multimodal AI on Developer GPUs: Alibaba Releases Qwen2.5-Omni-3B with 50% Lower VRAM Usage and Nearly-7B Model Performance

May 2025 Patch Tuesday: Five Zero-Days and Five Critical Vulnerabilities Among 72 CVEs

CVE-2025-47113 – Adobe Experience Manager Stored Cross-Site Scripting (XSS)

Insurance firm Lemonade warns of breach of thousands of driving license numbers

CVE-2023-51756 – Apache HTTP Server Cross-Site Scripting

Save $500 on the 75-inch Roku Pro Series TV at Best Buy

US offers $10 million reward for tips about state-linked RedLine hackers

CVE-2025-37882 – Linux Kernel USB xHCI Isochronous Ring Handling Vulnerability

CVE-2025-6139 – TOTOLINK T10 Hard-Coded Password Vulnerability

Related Posts