Beetel 777VR1 Web Management hard-coded credentials

A vulnerability has been found in Beetel 777VR1 up to 01.00.09. The impacted element is an unknown function of the component Web Management Interface. The manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. It is advisable to modify the configuration settings. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

使用硬编码的凭证

Beetel 777VR1 信任管理问题漏洞

Beetel 777VR1是Beetel公司的一款路由器。 Beetel 777VR1 01.00.09及之前版本存在信任管理问题漏洞，该漏洞源于Web管理接口存在硬编码凭证。

N/A

N/A