Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Netis E1+ 1.2.32533 - Unauthenticated WiFi Password Leak
Vulnerability Description
Netis E1+ 1.2.32533 contains an information disclosure vulnerability that allows unauthenticated attackers to retrieve WiFi passwords through the netcore_get.cgi endpoint. Attackers can send a GET request to the endpoint to extract sensitive network credentials including SSID and WiFi passwords in plain text.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
通过发送数据的信息暴露
Vulnerability Title
Netis E1+ 安全漏洞
Vulnerability Description
Netis E1+是中国天旦(Netis)公司的一个无线信号放大器。 Netis E1+ 1.2.32533版本存在安全漏洞,该漏洞源于信息泄露漏洞,攻击者可向netcore_get.cgi端点发送GET请求,可能导致以明文形式提取包括SSID和WiFi密码在内的敏感网络凭据。
CVSS Information
N/A
Vulnerability Type
N/A