CVE-2021-35296

CRITICAL

PTCL HG150-Ub v3.0 - Authentication Bypass via Cookie and Response Path Manipulation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-35296. PoCs published by afaq1337.

AI-analyzed exploit summary The repository contains only a README.md with minimal content (redacted) and no exploit code or technical details. It lacks any functional PoC, analysis, or meaningful information about CVE-2021-35296.

Description

An issue in the administrator authentication panel of PTCL HG150-Ub v3.0 allows attackers to bypass authentication via modification of the cookie value and Response Path.

Exploits (1)

nomisec STUB 2 stars
by afaq1337 · poc
https://github.com/afaq1337/CVE-2021-35296

The repository contains only a README.md with minimal content (redacted) and no exploit code or technical details. It lacks any functional PoC, analysis, or meaningful information about CVE-2021-35296.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unknown
No auth needed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/afaq1337/CVE-2021-35296

Scores

CVSS v3 9.8
EPSS 0.0193
EPSS Percentile 77.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-287
Status published
Products (1)
ptcl/hg150-ub_firmware 3.0
Published Oct 04, 2021
Tracked Since Feb 18, 2026