CVE-2024-28146

Name of the Vulnerable Software and Affected Versions Application (affected versions not specified)

Description The issue concerns the application's use of several hard-coded credentials. These credentials are used for encrypting config files during backup and decrypting new firmware during updates. Additionally, some of these passwords allow direct connections to the database server of the affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.