Description
Browsing the path: http://ip/wifi_ap_pata_get.cmd, will show in the name of the existing access point on the component, and a password in clear text.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
Low
Affected products
- Chcnav / Chcnav - P5E GNSS4.2 – 4.1*
References
- VENDOR_ADVISORYhttps://www.gov.il/en/Departments/faq/cve_advisories