CVE-2023-49256
7.5HIGHIt is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key.
Published: 1/12/2024Updated: 6/20/2025
Description
It is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key.
AI AnalysisPowered by AI
Affected Products
hongdianh8951-4g-esp_firmware
hongdianh8951-4g-esp
-
References
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/en/posts/2024/01/CVE-2023-49253/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-49253/Third Party Advisory