Vulnerability Details CVE-2024-41689
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to unencrypted storing of WPA/ WPS credentials within the router's firmware/ database. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary data to access the plaintext WPA/ WPS credentials on the vulnerable system.
Successful exploitation of this vulnerability could allow the attacker to bypass WPA/ WPS and gain access to the Wi-Fi network of the targeted system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.0%
CVSS Severity
CVSS v3 Score 4.6
References
Products affected by CVE-2024-41689
-
cpe:2.3:h:syrotech:sy-gpon-1110-wdont:-
-
cpe:2.3:o:syrotech:sy-gpon-1110-wdont_firmware:3.1.02-231102