CVE-2024-55211

HIGH

Think Router Tk-Rt-Wr135G V3.0.2-X000 - Auth Bypass

Title source: llm
STIX 2.1

Description

An issue in Think Router Tk-Rt-Wr135G V3.0.2-X000 allows attackers to bypass authentication via a crafted cookie.

Exploits (1)

nomisec WRITEUP 2 stars
by micaelmaciel · poc
https://github.com/micaelmaciel/CVE-2024-55211

References (1)

Scores

CVSS v3 8.4
EPSS 0.0012
EPSS Percentile 30.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-565
Status published
Products (1)
think/tk-rt-wr135g_firmware 3.0.2-x000
Published Apr 17, 2025
Tracked Since Feb 18, 2026