FiberHome HG6245D Telnet Backdoor Vulnerability

FiberHome HG6245D Telnet Backdoor Vulnerability

CVE-2021-27173 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

An issue was discovered on FiberHome HG6245D devices through RP2613. There is a telnet?enable=0&key=calculated(BR0_MAC) backdoor API, without authentication, provided by the HTTP server. This will remove firewall rules and allow an attacker to reach the telnet server (used for the CLI).

Learn more about our Cis Benchmark Audit For Server Software.