This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to unencrypted storing of WPA/ WPS credentials within the router's firmware/ database. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary data to access the plaintext WPA/ WPS credentials on the vulnerable system. Successful exploitation of this vulnerability could allow the attacker to bypass WPA/ WPS and gain access to the Wi-Fi network of the targeted system.
History

Fri, 22 Nov 2024 12:00:00 +0000


cve-icon MITRE

Status: PUBLISHED

Assigner: CERT-In

Published: 2024-07-26T11:59:38.725Z

Updated: 2024-08-02T04:46:52.664Z

Reserved: 2024-07-19T11:24:20.421Z

Link: CVE-2024-41689

cve-icon Vulnrichment

Updated: 2024-07-26T18:11:58.550Z

cve-icon NVD

Status : Modified

Published: 2024-07-26T12:15:03.490

Modified: 2024-11-21T09:32:58.750

Link: CVE-2024-41689

cve-icon Redhat

No data.