PT-2021-18644 · Intelbras · Intelbras Wrn 342+1
Akaclandestine
·
Published
2021-04-14
·
Updated
2021-04-21
·
CVE-2021-3017
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Intelbras WIN 300 and WRN 342 devices through 2021-01-04
Description
The issue allows remote attackers to discover credentials by reading the
def wirelesspassword line in the HTML source code of the web interface.Recommendations
For Intelbras WIN 300 and WRN 342 devices through 2021-01-04, consider restricting access to the web interface until a fix is available. As a temporary workaround, avoid using the default wireless password and change it to a strong, unique password to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Intelbras Win 300
Intelbras Wrn 342