Joelgmsec

**Name of the Vulnerable Software and Affected Versions** NetMan 204 (affected versions not specified) **Description** The issue allows an attacker who knows the MAC and serial number of the device to reset the administrator password via the legitimate recovery function. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NetMan 204 (affected versions not specified) **Description** The issue allows an unauthenticated remote attacker to read a file, specifically `config.cgi`, which contains sensitive information such as credentials. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NetMan 204 (affected versions not specified) **Description** The issue is a remote code execution vulnerability. A remote attacker could upload a firmware file containing a webshell, allowing them to execute arbitrary code as root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.