Realtek xPON RTL9601D SDK 1.9 stores passwords in plaintext which may allow attackers to possibly gain access to the device with root permissions via the build-in network monitoring tool and execute arbitrary commands.
References
Link | Resource |
---|---|
https://www.realtek.com/images/safe-report/RTL9601D_CVE-2021-27372.pdf | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-03-25T21:31:22
Updated: 2021-03-25T21:31:22
Reserved: 2021-02-17T00:00:00
Link: CVE-2021-27372
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-03-25T22:15:12.917
Modified: 2021-03-30T20:30:50.573
Link: CVE-2021-27372
JSON object: View
Redhat Information
No data.
CWE