Hardcoded Password in D-LINK Go-RT-AC750 GORTAC750_A1_FW_v101b03 Allows Remote Attackers to Obtain Root Access
CVE-2024-22853

9.8CRITICAL

Key Information:

Vendor
D-LINK
Vendor
CVE Published:
6 February 2024

Badges

πŸ‘Ύ Exploit ExistsπŸ“° News Worthy

Summary

The D-LINK Go-RT-AC750 GORTAC750_A1_FW_v101b03 router contains a hardcoded password for the Alphanetworks account. This security flaw enables remote attackers to gain unauthorized root access through a telnet session, potentially compromising the device and the network it operates within. Network administrators should be aware of this vulnerability and take necessary precautions to secure their systems against potential exploitation.

Get notified when SecurityVulnerability.io launches alerting πŸ””

News Articles

CVE-2024-22853 : D-LINK GO-RT-AC750 101B03 HARD-CODED PASSWORD - Cloud WAF

CVE-2024-22853 : D-LINK Go-RT-AC750 GORTAC750_A1_FW_v101b03 has a hardcoded password for the Alphanetworks account, which allows remote attackers to obtain root access via a telnet session.

1 year ago

References

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • πŸ“°

    First article discovered by prophaze.com

  • Vulnerability published

  • Vulnerability Reserved

.
πŸͺ This website uses cookies, like every other website on the internet πŸ˜• By using our website, you consent to the use of cookies.