CVE Catalog

CVE-2024-46383

LowCVSS 2.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.26%

17th percentile — higher than 17% of all known CVEs

Summary

The Hathway Skyworth CM5100-511 router version 4.1.1.24 stores sensitive information about USB and Wi-Fi connected devices in plaintext. This means anyone with access to the router's storage can read this data.

Risk Assessment

The risk involves potential leakage of confidential device information, which could facilitate social engineering attacks or further intrusions into the organization's infrastructure.

Recommendation

Immediately update the router firmware to the latest version if a patch is available, or consider replacing the device with one that encrypts stored data.

Original NVD description (English source)

Hathway Skyworth Router CM5100-511 v4.1.1.24 was discovered to store sensitive information about USB and Wifi connected devices in plaintext.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS