Weak Password Requirement Vulnerability in Teldats Router RS123
CVE-2022-39997

8HIGH

Key Information:

Vendor: Teldats
Vendor: CVE Published:; 27 August 2024

What is CVE-2022-39997?

A vulnerability exists in Teldat's Router RS123 and RS123w due to weak password requirements. This flaw allows a remote attacker to exploit the router by escalating privileges, potentially leading to unauthorized access and control over the device. Organizations using these routers should review their security configurations, implement stronger password policies, and apply any necessary updates to mitigate risks associated with this vulnerability.

References

https://github.com/uyhacked/Teldat-s-Router/blob/main/Teldat

https://github.com/uyhacked/Teldat-s-Router/blob/main/Tel...

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 27, 2024
Vulnerability Reserved
Sep 6, 2022

CVE-2022-39997 Data

JSON