CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-40750

Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi passwords over the public Internet during app-based installation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.2%

CVSS Severity

CVSS v3 Score 5.3

References

https://news.ycombinator.com/item?id=40917312
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/
https://news.ycombinator.com/item?id=40917312
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/

Products affected by CVE-2024-40750

Linksys » Mbe7000 » Version: N/A

cpe:2.3:h:linksys:mbe7000:-
Linksys » Mx6200 » Version: N/A

cpe:2.3:h:linksys:mx6200:-
Linksys » Mbe7000 Firmware » Version: 1.0.10.215314

cpe:2.3:o:linksys:mbe7000_firmware:1.0.10.215314
Linksys » Mx6200 Firmware » Version: 1.0.8.215731

cpe:2.3:o:linksys:mx6200_firmware:1.0.8.215731

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-40750

Products

Pricing

Contact Us