Home

Description

Vilo 5 Mesh WiFi System <= 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system.

PUBLISHED Reserved 2024-07-05 | Published 2024-10-21 | Updated 2024-10-22 | Assigner mitre

References

vilo.com

github.com/...esearch/vilo/blob/main/vulns/CVE-2024-40091.md

cve.org (CVE-2024-40091)

nvd.nist.gov (CVE-2024-40091)

Download JSON