CVE-2021-31252

Name of the Vulnerable Software and Affected Versions CHIYU Technology BF-630 CHIYU Technology BF-450M CHIYU Technology BF-430 CHIYU Technology BF-431 CHIYU Technology BF631-W CHIYU Technology BF830-W CHIYU Technology Webpass CHIYU Technology SEMAC

Description An open redirect issue exists in various devices from CHIYU Technology. This can be exploited by sending a specially crafted URL link to convince the user to click on it, potentially redirecting them to an unintended location.

Recommendations For CHIYU Technology BF-630, consider disabling any functionality that allows redirects until a patch is available. For CHIYU Technology BF-450M, restrict access to any modules that handle URL redirects to minimize the risk of exploitation. For CHIYU Technology BF-430, avoid using any features that involve clicking on links from untrusted sources until the issue is resolved. For CHIYU Technology BF-431, as a temporary workaround, consider implementing additional validation on URLs to prevent unintended redirects. For CHIYU Technology BF631-W, BF830-W, Webpass, and SEMAC, at the moment, there is no information about a newer version that contains a fix for this issue.