Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Starry Station (aka Starry Router) sets the Access-Control-Allow-Origin header to "*". This allows any hosted file on any domain to make calls to the device's webserver and brute force the credentials and pull any information that is stored on the device. In this case, a user's Wi-Fi credentials are stored in clear text on the device and can be pulled easily.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Starry Station 信任管理问题漏洞
Vulnerability Description
Starry Station是美国Starry公司的一款无线路由器。 Starry Station中存在安全漏洞,该漏洞源于程序将Access-Control-Allow-Origin头设置成为‘*’。攻击者可利用该漏洞暴力破解凭证,并获取存储在设备上的任意信息。
CVSS Information
N/A
Vulnerability Type
N/A