CVE-2024-23726

Published: Jan 21, 2024

Modified: May 30, 2025

PUBLISHED

Description

Ubee DDW365 XCNDDW365 devices have predictable default WPA2 PSKs that could lead to unauthorized remote access. A remote attacker (in proximity to a Wi-Fi network) can derive the default WPA2-PSK value by observing a beacon frame. A PSK is generated by using the first six characters of the SSID and the last six of the BSSID, decrementing the last digit.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/actuator/cve/blob/main/Ubee/CWE-1392.md

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-23726

Description

Affected Products

References