3.5
CVSSv2

CVE-2021-25326

Published: 09/04/2021 Updated: 04/05/2021
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Vulnerability Summary

Skyworth Digital Technology RN510 V.3.1.0.4 is affected by an incorrect access control vulnerability in/cgi-bin/test_version.asp. If Wi-Fi is connected but an unauthenticated user visits a URL, the SSID password and web UI password may be disclosed.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

skyworthdigital rn510_firmware 3.1.0.4

Mailing Lists

Shenzhen Skyworth RN510 suffers from an unauthenticated sensitive information disclosure vulnerability ...
Overview ======== Title:- UnAuthenticated Sensitive information Discloser in RN510 Mesh Extender CVE-ID :- CVE-2021-25326 Author: Kaustubh G Padwad Vendor: Shenzhen Skyworth Digital Technology Company Ltd(wwwskyworthdigitalcom/products) Products:      1 RN510 with firmware V3104 (Tested and verified) Potential     2RN620 w ...