Hitron CVE-30360 devices use a 578A958E3DD933FC DES key that is shared across different customers' installations, which makes it easier for malicious users to obtain sensitive information by decrypting a backup configuration file, as demonstrated by a password hash in the um_auth_account_password field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hitrontech cve-30360_firmware 3.1.1.21 |