CVE-2024-40750

July 9, 2024, 8:15 p.m.

Tags

cve@mitre.org
2024-07-09
CVE-2024-40750

Product(s) Impacted

Linksys Velop Pro 6E

  • 1.0.8 MX6200_1.0.8.215731

Linksys Velop Pro 7

  • 1.0.10.215314

Description

Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi passwords over the public Internet during app-based installation.

Weaknesses

Date

Published: July 9, 2024, 8:15 p.m.

Last Modified: July 9, 2024, 8:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://news.ycombinator.com/item?id=40917312
cve@mitre.org
https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/
cve@mitre.org