CVE-2020-25988: A UPnP Abuse or, a feature. – Digitalmunition




0Osuiu5K_rrAlXjhO2gnnGWi1tmiUUnDyTZmwdl2dYA.jpgautowebps764d275fd45715840f538493c78a3b483f15cb2b.jpeg

Home Forums CVE-2020-25988: A UPnP Abuse or, a feature.

This topic contains 1 reply, has 2 voices, and was last updated by  ShiroiOk 1 month, 2 weeks ago.

  • Author
    Posts
  • #337208

    anonymous
    Participant


    So I was playing around with my home router and stumbled upon my first bug/feature. The bug/feature is: Once I’m on the same network (physical/wireless), I can login to your router’s admin panel, by fetching the credentials of ‘admin’ user.

    Here’s a short writeup:
    [https://niteshsurana.medium.com/cve-2020-25988-a-upnp-abuse-424f0db73129](https://niteshsurana.medium.com/cve-2020-25988-a-upnp-abuse-424f0db73129)

    P.S. – If you have any feedback regarding anything or happen to spot any mistakes, please do let me know. Thanks!!

  • #337210

    ShiroiOk

    I believe its a feature of upnp but the fact the credentials are in plaintext means that the company producing those routers is lax with security.

    You should definitely send this through to them, if somebody gained access to a network with this router they would be able to access the admin panel and go from there.

    Good find.

You must be logged in to reply to this topic.