Vulnerability in Digisol Router Could Allow Physical Access to System
CVE-2024-2257

Currently unrated

Key Information:

Vendor: Digisol
Status: Digisol Router Dg-gr1321
Vendor: CVE Published:; 14 May 2024

What is CVE-2024-2257?

This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to improper implementation of password policies. An attacker with physical access could exploit this by creating password that do not adhere to the defined security standards/policy on the vulnerable system.

Successful exploitation of this vulnerability could allow the attacker to expose the router to potential security threats.

Affected Version(s)

Digisol Router DG-GR1321 v3.2.02

References

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOT...

third-party-advisory

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2024
Vulnerability Reserved
Mar 7, 2024

Credit

This vulnerability is discovered by Shravan Singh, Ganesh Bakare and Karan Patel from Redfox Cyber Security Inc, Toronto, Canada.