Tinycontrol LAN Controller 3 Denial Of Service

Posted on 02 September 2023

Tinycontrol LAN Controller version 3 suffers from an unauthenticated remote denial of service vulnerability. An attacker can issue direct requests to the stm.cgi page to reboot and also reset factory settings on the device.