CVE-2021-46247
First published: Thu Feb 17 2022(Updated: )
The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from ASUS CMAX6000 v1.02.00.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Asus Cmax6000 Firmware | =1.02.00 | |
| ASUS CMAX6000 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-46247?
CVE-2021-46247 is rated as a high severity vulnerability due to the use of a hard-coded cryptographic key.
How do I fix CVE-2021-46247?
To mitigate CVE-2021-46247, update the ASUS CMAX6000 firmware to a newer version that does not contain the hard-coded key.
What systems are affected by CVE-2021-46247?
CVE-2021-46247 specifically affects ASUS CMAX6000 with firmware version 1.02.00.
What are the potential impacts of CVE-2021-46247?
The potential impacts of CVE-2021-46247 include the possibility of unauthorized access to encrypted data due to the insecure cryptographic key.
Is it safe to use ASUS CMAX6000 with firmware version 1.02.00 in production?
Using ASUS CMAX6000 with firmware version 1.02.00 in production is unsafe due to the high risk posed by CVE-2021-46247.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/severity
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/tags
- agent/source
- vendor/asus
- canonical/asus cmax6000 firmware
- version/asus cmax6000 firmware/1.02.00
- canonical/asus cmax6000