Skip to main content

CVE-2021-28150

Description

Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.

NVD
Severity: MEDIUM
CVE ID: CVE-2021-28150
CVSS Score: 5.5
CVSS Metrics: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Refrence: NVD MITRE

Proof Of Concept

Nuclei Templates for CVE-2021-28150

Refrence: Project Discovery GitHub

Description
Proof Of Concept