Unauthorized Access to Device via Hard-coded Credentials
CVE-2023-6198

9.3CRITICAL

Key Information:

Vendor: Baicells
Status: Snap Router
Vendor: CVE Published:; 25 June 2024

What is CVE-2023-6198?

The Baicells Snap Router, specifically the BaiCE_BMI model on the EP3011, contains a vulnerability due to the existence of hard-coded credentials in its User Passwords modules. This design flaw allows unauthorized users to gain access to the device, posing significant risks to network security. Organizations utilizing this router should be aware of the potential for exploitation and take necessary precautions to safeguard their infrastructure, including updating to configurations that mitigate this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Snap Router EP3011 1.3.5.6

References

https://www.baicells.com

CVSS V3.1

Score:

9.3

Severity:

CRITICAL

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jun 25, 2024
Vulnerability Reserved
Nov 18, 2023

Credit

how2fish

JSON

Baicells

What is CVE-2023-6198?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.