Cleartext Wi-Fi Password Transmission in Linksys Velop Routers
CVE-2024-40750

Currently unrated

Key Information:

Vendor: Linksys
Status: Velop Pro 6E and Velop 7
Vendor: CVE Published:; 9 July 2024

Summary

Linksys Velop Pro 6E and 7 models have a significant flaw that causes Wi-Fi passwords to be transmitted in cleartext during app-based setup. This security lapse allows potential attackers to intercept sensitive information while it traverses the public internet, exposing users to unauthorized access to their Wi-Fi networks.

References

https://stackdiary.com/linksys-velop-routers-send-wi-fi-p...

https://news.ycombinator.com/item?id=40917312

Timeline

Vulnerability published
Jul 9, 2024