Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 mishandle configuration management. Once any user is logged in and maintains an active session, an attacker can directly query the backup endpoint and download a full configuration archive. This archive contains sensitive files such as /etc/shadow, enabling credential recovery and potential full compromise of the device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
KAYSUS KS-WR3600 安全漏洞
Vulnerability Description
KAYSUS KS-WR3600是中国KAYSUS公司的一款无线路由器。 KAYSUS KS-WR3600 1.0.5.9.1版本存在安全漏洞,该漏洞源于配置管理不当,可能导致攻击者下载包含敏感文件的完整配置存档。
CVSS Information
N/A
Vulnerability Type
N/A