CVE-2023-24049

Vulnerability

The Connectize AC21000 G6 router (firmware version 641.139.1.1256) suffers from poor credential management, which enables attackers to gain escalated privileges on the device. The vulnerability stems from the device's handling of administrative credentials, likely involving weak encryption, hard-coded credentials, or inadequate access controls. Affected firmware version is 641.139.1.1256. [1]

Exploitation

An attacker can exploit this vulnerability by accessing the router's management interface, either locally or remotely. No specific authentication or user interaction is required beyond network access to the device. The poor credential management allows the attacker to bypass normal authentication mechanisms or retrieve credentials directly, leading to privilege escalation. [1]

Impact

Successful exploitation results in an attacker gaining elevated privileges on the router, potentially achieving full administrative control. This could lead to unauthorized access to network configurations, interception of traffic, and further compromise of connected devices. The impact includes a loss of confidentiality, integrity, and availability of the device and network. [1]

Mitigation

As of the publication date (2023-12-04), no fix or patched firmware version has been released by Connectize. Users are advised to restrict network access to the management interface, disable remote administration if possible, and monitor for future firmware updates. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities (KEV) catalog. [1]