PT-2025-20904 · Unknown · Cp-Xr-De21-S
Published
2025-05-13
·
Updated
2025-05-13
·
CVE-2025-44039
CVSS v3.1
5.1
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
CP-XR-DE21-S -4G Router Firmware version 1.031.022
Description:
The issue concerns insecure protections for the UART console, allowing local attackers to connect via a serial connection, read the boot sequence, and reveal internal system details and sensitive information without authentication.
Recommendations:
For CP-XR-DE21-S -4G Router Firmware version 1.031.022, consider restricting physical access to the UART port as a temporary mitigation measure until a patch is available.
Exploit
Fix
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cp-Xr-De21-S