Unauthenticated Remote Access and Configuration Change Vulnerability in Juplink RX4-1500 v1.0.3-v1.0.5

Unauthenticated Remote Access and Configuration Change Vulnerability in Juplink RX4-1500 v1.0.3-v1.0.5

CVE-2020-8798 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

httpd in Juplink RX4-1500 v1.0.3-v1.0.5 allows remote attackers to change or access router settings by connecting to the unauthenticated setup3.htm endpoint from the local network.

Learn more about our Network Penetration Testing.