PT-2023-14973 · Prolink · Prolink Router Prs1841

Zux0X3A

Published

2023-02-21

Updated

2023-03-02

CVE-2022-46637

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Prolink router PRS1841

Description The Prolink router PRS1841 contains hardcoded credentials for its Telnet and FTP services. This issue allows unauthorized access to the device.

Recommendations For Prolink router PRS1841, consider changing the default credentials for Telnet and FTP services as a temporary workaround, and apply a patch or update when available to fully resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2022-46637

Affected Products

Prolink Router Prs1841

PT-2023-14973 · Prolink · Prolink Router Prs1841

CVE-2022-46637

Weakness Enumeration

Related Identifiers

Affected Products

References · 6