This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to transmission of authentication credentials in plaintext over the network. A remote attacker could exploit this vulnerability by eavesdropping on the victim’s network traffic to extract username and password from the web interface (Login Page) of the vulnerable targeted system.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERT-In
Published: 2024-01-17T07:25:01.406Z
Updated: 2024-08-02T22:40:34.176Z
Reserved: 2023-12-22T09:53:53.227Z
Link: CVE-2023-51740
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2024-01-17T08:15:37.970
Modified: 2024-01-20T02:47:22.467
Link: CVE-2023-51740
Redhat
No data.