CVE-2019-20462

Name of the Vulnerable Software and Affected Versions Alecto IVM-100 version 2019-11-12

Description An issue was discovered where a large amount of information is disclosed when attaching to the serial interface at the board level and rebooting the device. This includes the view password and the password of the Wi-Fi access point that the device used.

Recommendations For Alecto IVM-100 version 2019-11-12, as a temporary workaround, consider restricting access to the serial interface at the board level until a patch is available. However, at the moment, there is no information about a newer version that contains a fix for this vulnerability.