Dongyoung Media DM-AP240T/W Wireless Access Point Unauthenticated Configuration Disclosure Vulnerability

A vulnerability allowing unauthenticated configuration disclosure has been identified in Dongyoung Media DM-AP240T/W wireless access points. The issue resides in the '/cgi-bin/sys_system_config' management endpoint, which permits remote retrieval of a compressed configuration archive without requiring authentication or authorization. This exposed configuration may contain administrative credentials and other sensitive settings, potentially enabling further compromise of the device or network.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive configuration information, including administrative credentials, which could be used to compromise the device or network further.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/cgi-bin/sys_system_config' endpoint without authentication. The response will include a 'config.tgz' file attachment containing the configuration archive. Alternatively, the 'show' command can be appended to the request to receive a direct configuration dump.