An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access point for initial configuration. The WiFi network provided has no network authentication (such as an encryption key) and persists permanently, including after enrollment and setup is complete. The WiFi network serves a web-based configuration utility, as well as an unauthenticated ModBus protocol interface.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-01-23T00:00:00
Updated: 2024-08-02T16:30:45.385Z
Reserved: 2023-06-18T00:00:00
Link: CVE-2023-35835
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-01-23T23:15:07.947
Modified: 2024-11-21T08:08:47.157
Link: CVE-2023-35835
Redhat
No data.