CVE-2021-28150
Description
Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.
NVD
Severity: MEDIUM
CVE ID: CVE-2021-28150
CVSS Score: 5.5
CVSS Metrics: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Proof Of Concept
Nuclei Templates for CVE-2021-28150
Refrence: Project Discovery GitHub