CVE-2024-2257

CVE-2024-2257: Password Policy Bypass Vulnerability in Digisol Router

Vendor Digisol
Product Digisol Router DG-GR1321
Weakness CWE-20 · Input validation
Published May 10, 2024
Last update August 1, 2024

CVSS base score

What the vulnerability does

01Description

This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to improper implementation of password policies. An attacker with physical access could exploit this by creating password that do not adhere to the defined security standards/policy on the vulnerable system. Successful exploitation of this vulnerability could allow the attacker to expose the router to potential security threats.

Key dates

02Disclosure timeline

May 10, 2024 CVE published
August 1, 2024 Record updated