← back
CVE-2020-6170

CVE-2020-6170

EPSS 7.3%
An authentication bypass vulnerability on Genexis Platinum-4410 v2.1 P4410-V2 1.28 devices allows attackers to obtain cleartext credentials from the HTML source code of the cgi-bin/index2.asp URI.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/156075/Genexis-Platinum-4410-2.1-Authentication-Bypass.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47961unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/156075/Genexis-Platinum-4410-2.1-Authentication-Bypass.htmlhttps://medium.com/%40husinulzsanub/exploiting-router-authentication-through-web-interface-68660c708206