VYPR
Unrated severityNVD Advisory· Published May 31, 2019· Updated Aug 4, 2024

CVE-2019-6725

CVE-2019-6725

Description

The rpWLANRedirect.asp ASP page is accessible without authentication on ZyXEL P-660HN-T1 V2 (2.00(AAKK.3)) devices. After accessing the page, the admin user's password can be obtained by viewing the HTML source code, and the interface of the modem can be accessed as admin.

Affected products

2
  • ZyXEL/P-660HN-T1 V2description
  • Zyxel/P 660hwllm-fuzzy
    Range: = 2.00(AAKK.3)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.