Title: Easergy T300 Firmware 2.7 and Older Vulnerability: Missing Encryption of Sensitive Data in HTTP Traffic

CVE-2020-28217 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A CWE-311: Missing Encryption of Sensitive Data vulnerability exists in Easergy T300 (firmware 2.7 and older), that would allow an attacker to read network traffic over HTTP protocol.

Learn more about our Network Penetration Testing.