exploitDog

CVE-2021-27176

Опубликовано: 10 фев. 2021

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_5g.cfg has cleartext passwords and 0644 permissions.

Ссылки

https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html#system-credentials-clear-text-files
Exploit
Third Party Advisory
https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html#system-credentials-clear-text-files
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:fiberhome:hg6245d_firmware:*:*:*:*:*:*:*:*

Версия до rp2613 (включая)

cpe:2.3:h:fiberhome:hg6245d:-:*:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.00066

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-312

Связанные уязвимости

GHSA-fvj3-9fpr-ff7m

github

больше 3 лет назад

An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_5g.cfg has cleartext passwords and 0644 permissions.

EPSS

Процентиль: 21%

0.00066

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-312