BEC Technologies Routers Cleartext Password Storage Information Disclosure Vulnerability

Vulnerability

A cleartext password storage vulnerability allowing information disclosure has been identified in multiple BEC Technologies routers. This issue arises from storing credentials in a recoverable format within the web-based user interface. Authentication is required to exploit this vulnerability, which could lead to the disclosure of stored credentials and further compromise of the affected system.

Impact

Exploitation of this vulnerability could result in the unauthorized disclosure of sensitive information, specifically stored credentials, which could be used to compromise affected systems.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

BEC Technologies Routers Cleartext Password Storage Information Disclosure Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating