CVE-2024-40091

Oct. 21, 2024, 9:15 p.m.

Tags

cve@mitre.org
2024-10-21
CVE-2024-40091

Product(s) Impacted

Vilo Mesh WiFi System

  • <= 5.16.1.33

Description

Vilo 5 Mesh WiFi System <= 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system.

Weaknesses

Date

Published: Oct. 21, 2024, 9:15 p.m.

Last Modified: Oct. 21, 2024, 9:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

http://vilo.com
cve@mitre.org
https://github.com/byu-cybersecurity-research/vilo/blob/main/vulns/CVE-2024-40091.md
cve@mitre.org