Wyrestorm: >> Apollo Vx20 Security Vulnerabilities
An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. The TELNET service prompts for a password only after a valid username is entered, which might make it easier for remote attackers to enumerate user accounts.
CVSS Score
7.5
EPSS Score
0.012
Published
2024-03-27
An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. Remote attackers can discover cleartext passwords via a SoftAP /device/config GET request.
CVSS Score
9.1
EPSS Score
0.894
Published
2024-03-27
An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. Remote attackers can restart the device via a /device/reboot GET request.
CVSS Score
7.5
EPSS Score
0.051
Published
2024-03-27