Huawei Dg8045 Deviceinfo Information Leakage Vulnerability
Huawei Dg8045 Deviceinfo Information Leakage Vulnerability
Huawei DG8045 deviceinfo information leakage vulnerability
Vulnerability Description
Huawei DG8045 deviceinfo API interface has information leakage vulnerability. The attacker can obtain the account password to log in to the background through the leaked information.
Vulnerability Impact
Huawei DG8045
Network surveying and mapping
app=”DG8045-Home-Gateway-DG8045”
Vulnerability reappears
Login page
Verify POC
1
/api/system/deviceinfo
The last 8 digits of SerialNumber are the initial password
This post is licensed under CC BY 4.0 by the author.