An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access point for initial configuration. The WiFi network provided has no network authentication (such as an encryption key) and persists permanently, including after enrollment and setup is complete. The WiFi network serves a web-based configuration utility, as well as an unauthenticated ModBus protocol interface.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-01-23T00:00:00

Updated: 2024-08-02T16:30:45.385Z

Reserved: 2023-06-18T00:00:00

Link: CVE-2023-35835

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-01-23T23:15:07.947

Modified: 2024-11-21T08:08:47.157

Link: CVE-2023-35835

cve-icon Redhat

No data.