Plaintext Transmission of Authentication Credentials in Skyworth Router CM5100

Plaintext Transmission of Authentication Credentials in Skyworth Router CM5100

CVE-2023-51740 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to transmission of authentication credentials in plaintext over the network. A remote attacker could exploit this vulnerability by eavesdropping on the victim’s network traffic to extract username and password from the web interface (Login Page) of the vulnerable targeted system.

Learn more about our Web App Pen Testing.