CVE-2017-13718

Name of the Vulnerable Software and Affected Versions Starry Station (aka Starry Router) (affected versions not specified)

Description The HTTP API supported by the device allows brute forcing the PIN setup by the user, enabling an attacker to change Wi-Fi settings and PIN, as well as port forward and expose internal devices' ports to the Internet. The device uses custom Python code called "rodman" that allows the mobile application to interact with the device using a secret, which is a uuid4 based session identifier, or a security code, which is the PIN number set by the user. An attacker on the Internet can interact with the router's HTTP interface when a user navigates to the attacker's website and brute force the credentials. The device's server sets the Access-Control-Allow-Origin header to "*", allowing an attacker to easily interact with the JSON payload returned by the device and steal sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.