This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to unencrypted storing of WPA/ WPS credentials within the router's firmware/ database. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary data to access the plaintext WPA/ WPS credentials on the vulnerable system.
Successful exploitation of this vulnerability could allow the attacker to bypass WPA/ WPS and gain access to the Wi-Fi network of the targeted system.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
MITRE
Status: PUBLISHED
Assigner: CERT-In
Published: 2024-07-26T11:59:38.725Z
Updated: 2024-08-02T04:46:52.664Z
Reserved: 2024-07-19T11:24:20.421Z
Link: CVE-2024-41689
Vulnrichment
Updated: 2024-07-26T18:11:58.550Z
NVD
Status : Modified
Published: 2024-07-26T12:15:03.490
Modified: 2024-11-21T09:32:58.750
Link: CVE-2024-41689
Redhat
No data.