CVE-2020-26201

Name of the Vulnerable Software and Affected Versions Askey AP5100W Dual SIG versions 1.01.097 and all prior versions

Description The issue allows an attacker to gain unauthorized access as an admin or root user to the device Operating System via Telnet or SSH, due to a weak password used at the Operating System (rlx-linux) level.

Recommendations For Askey AP5100W Dual SIG versions 1.01.097 and all prior versions, consider changing the default password to a strong one to prevent unauthorized access. As a temporary workaround, consider disabling Telnet and SSH access to the device until a patch is available. Restrict access to the device Operating System to minimize the risk of exploitation.