CVE-2024-4232

Name of the Vulnerable Software and Affected Versions Digisol Router (DG-GR1321) version v3.2.02

Description This issue is caused by the lack of encryption or hashing in storing passwords within the router's firmware/database. An attacker with physical access could exploit this by extracting the firmware and reverse-engineering the binary data to access plaintext passwords. Successful exploitation could allow the attacker to gain unauthorized access to the targeted system.

Recommendations For Digisol Router (DG-GR1321) version v3.2.02, consider changing passwords and restricting physical access to the device until a patch is available. As a temporary workaround, restrict access to the router's firmware and database to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.