CVE-2021-33531

Name of the Vulnerable Software and Affected Versions Weidmueller Industrial WLAN devices (affected versions not specified)

Description A vulnerability exists due to the use of hard-coded credentials in multiple iw * utilities. The device operating system contains an undocumented encryption password, which allows for the creation of custom diagnostic scripts. An attacker, authenticated as a low-privilege user, can send diagnostic scripts to trigger this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.