CVE-2018-9149

Published: Apr 1, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

The Zyxel Multy X (AC3000 Tri-Band WiFi System) device doesn't use a suitable mechanism to protect the UART. After an attacker dismantles the device and uses a USB-to-UART cable to connect the device, he can use the 1234 password for the root account to login to the system. Furthermore, an attacker can start the device's TELNET service as a backdoor.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.slideshare.net/secret/qrHwDOJ71eLg7f

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-9149

Description

Affected Products

References