Back to search
CVE-2021-20168
Published: Dec 30, 2021
Modified: Aug 3, 2024
PUBLISHED
Description
Netgear RAX43 version 1.0.3.96 does not have sufficient protections to the UART interface. A malicious actor with physical access to the device is able to connect to the UART port via a serial connection, login with default credentials, and execute commands as the root user. These default credentials are admin:admin.
| Vendor | Product | Versions |
|---|---|---|
n/a | Netgear RAX43 | affected 1.0.3.96 |
References
https://www.tenable.com/security/research/tra-2021-55
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now