Beetel 777VR1 UART access control

A flaw has been found in Beetel 777VR1 up to 01.00.09/01.00.09_55. The affected element is an unknown function of the component UART Interface. This manipulation causes improper access controls. It is feasible to perform the attack on the physical device. The complexity of an attack is rather high. The exploitability is described as difficult. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

访问控制不恰当

Beetel 777VR1 访问控制错误漏洞

Beetel 777VR1是Beetel公司的一款路由器。 Beetel 777VR1 01.00.09/01.00.09_55及之前版本存在访问控制错误漏洞，该漏洞源于UART接口访问控制不当，可能导致物理设备攻击。

N/A

N/A