CVE-2021-3017
First published: Wed Apr 14 2021(Updated: )
The web interface on Intelbras WIN 300 and WRN 342 devices through 2021-01-04 allows remote attackers to discover credentials by reading the def_wirelesspassword line in the HTML source code.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intelbras Win 300 Firmware | <=2021-01-04 | |
| Intelbras WIN 300 | ||
| Intelbras Wrn 342 Firmware | <=2021-01-04 | |
| Intelbras Wrn 342 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2021-3017.
What is the severity of CVE-2021-3017?
The severity of CVE-2021-3017 is high with a severity value of 7.5.
Which devices are affected by CVE-2021-3017?
Intelbras WIN 300 and WRN 342 devices with firmware versions up to and including 2021-01-04 are affected by CVE-2021-3017.
How can remote attackers exploit CVE-2021-3017?
Remote attackers can exploit CVE-2021-3017 by reading the def_wirelesspassword line in the HTML source code of the web interface on Intelbras WIN 300 and WRN 342 devices.
Are there any references for CVE-2021-3017?
Yes, you can find references for CVE-2021-3017 at the following links: https://pastebin.com/cTYTf0Yn and https://www.intelbras.com/pt-br/ajuda-download/faq/roteador-wireless-veloz-wrn-342
- agent/references
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/tags
- agent/first-publish-date
- agent/description
- agent/softwarecombine
- agent/event
- agent/source
- vendor/intelbras
- canonical/intelbras win 300 firmware
- version/intelbras win 300 firmware/2021-01-04
- canonical/intelbras win 300
- canonical/intelbras wrn 342 firmware
- version/intelbras wrn 342 firmware/2021-01-04
- canonical/intelbras wrn 342