| Titel | Beetel Beetel 777VR1 Broadband Router Firmware Version: V01.00.09 / V01.00.09_55 Cleartext Exposure of Sensitive Credentials in Boot Logs - UART |
|---|
| Beschreibung | Description
The Beetel 777VR1 router firmware logs sensitive authentication credentials in cleartext to the UART console during the boot process. Logged data includes WPA2-PSK values for wireless interfaces, WPS credentials, and other provisioning secrets. This disclosure occurs automatically during initialization through set_mib and wireless configuration routines and does not require authentication or interaction.
An attacker with physical access to the UART interface can passively capture valid credentials that remain usable after system startup.
Impact
Unauthorized network access through disclosure of Wi-Fi and provisioning credentials. |
|---|
| Quelle | ⚠️ https://gist.github.com/raghav20232023/253c041842f622d9c2cb6ee4111c2227 |
|---|
| Benutzer | raghav_2026 (UID 94388) |
|---|
| Einreichung | 11.01.2026 13:37 (vor 3 Monaten) |
|---|
| Moderieren | 25.01.2026 10:43 (14 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 342796 [Beetel 777VR1 bis 01.00.09/01.00.09_55 UART Interface Information Disclosure] |
|---|
| Punkte | 20 |
|---|