PT-2017-12009 · Humax · Humax Wi-Fi Router Hg100R-*
Published
2017-07-19
·
Updated
2021-06-21
·
CVE-2017-11435
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Humax Wi-Fi Router model HG100R-* version 2.0.6
Description
The issue allows for an authentication bypass via specially crafted requests to the management console. This can be exploited remotely when the router exposes the management console. The router fails to validate the session token for certain methods in the "/api" endpoint. An attacker can exploit this to retrieve sensitive information, including private and public IP addresses, SSID names, and passwords.
Recommendations
For Humax Wi-Fi Router model HG100R-* version 2.0.6, consider restricting access to the management console to minimize the risk of exploitation. As a temporary workaround, avoid using the "/api" endpoint until a patch is available.
Exploit
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Humax Wi-Fi Router Hg100R-*