RSS   Podatności dla 'Inteno router firmware'   RSS

2017-07-17
 
CVE-2017-11361

CWE-269
 

 
Inteno routers have a JUCI ACL misconfiguration that allows the "user" account to read files, write to files, and add root SSH keys via JSON commands to ubus. (Exploitation is sometimes easy because the "user" password might be "user" or might match the Wi-Fi key.)

 

 >>> Vendor: Intenogroup 4 Produkty
Inteno router firmware
Iopsys
Iopsys firmware
Eg200 firmware


Copyright 2024, cxsecurity.com

 

Back to Top