This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to unencrypted storing of WPA/ WPS credentials within the router's firmware/ database. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary data to access the plaintext WPA/ WPS credentials on the vulnerable system.
Successful exploitation of this vulnerability could allow the attacker to bypass WPA/ WPS and gain access to the Wi-Fi network of the targeted system.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERT-In
Published: 2024-07-26T11:59:38.725Z
Updated: 2024-08-02T04:46:52.664Z
Reserved: 2024-07-19T11:24:20.421Z
Link: CVE-2024-41689
Vulnrichment
Updated: 2024-07-26T18:11:58.550Z
NVD
Status : Analyzed
Published: 2024-07-26T12:15:03.490
Modified: 2024-08-05T21:05:55.990
Link: CVE-2024-41689
Redhat
No data.