Inaba Denki Sangyo Wi-Fi AP Unit Cleartext Transmission Vulnerability in AC-WPS-11ac Series
Vulnerability
A vulnerability allowing cleartext transmission of sensitive information exists in Inaba Denki Sangyo Wi-Fi AP UNIT 'AC-WPS-11ac series' models through version 2.0.03P. This vulnerability could be exploited by a remote, unauthenticated attacker to eavesdrop on communications and intercept authentication information, potentially leading to unauthorized access or manipulation of device settings.
Impact
Exploitation of this vulnerability could result in a man-in-the-middle attack, allowing a remote, unauthenticated attacker to intercept communications and obtain authentication information.
Remediation
Users are advised to update the firmware to the latest version, v2.0.06.13P, available for all 'AC-WPS-11ac series' models. If the firmware update is not feasible, consider implementing recommended workarounds, such as prohibiting WAN/Wireless access to the WEB UI and registering MAC addresses of permitted devices.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.