Hub Appsec rule

More info

vpatch-CVE-2018-13317 AppSec Rule

« vpatch-CVE-2018-13317 »
v0.1 by crowdsecurity
AppSec rule

Detects unauthenticated access to TOTOLINK A3002RU password disclosure endpoint.

Installation

cscli appsec-rules install crowdsecurity/vpatch-CVE-2018-13317

YAML Configuration

1## autogenerated on 2025-12-17 15:06:18
2name: crowdsecurity/vpatch-CVE-2018-13317
3description: 'Detects unauthenticated access to TOTOLINK A3002RU password disclosure endpoint.'
4rules:
5  - zones:
6      - URI
7    transform:
8      - lowercase
9      - urldecode
10    match:
11      type: equals
12      value: /password.htm
13
14labels:
15  type: exploit
16  service: http
17  confidence: 3
18  spoofable: 0
19  behavior: 'http:exploit'
20  label: 'Totolink A3002RU - Information Disclosure'
21  classification:
22    - cve.CVE-2018-13317
23    - attack.T1592
24    - cwe.CWE-79
25

Hub Appsec rule

« vpatch-CVE-2018-13317 »v0.1 by crowdsecurityAppSec rule

« vpatch-CVE-2018-13317 »
v0.1 by crowdsecurity
AppSec rule