mirror of
https://github.com/0x5t4l1n/CVE.git
synced 2026-05-26 11:25:49 +00:00
Stalin
37 lines
858 B
Markdown
37 lines
858 B
Markdown
|
|
|
|
# CVE-2026-30081 — Quantum Networks QN-I-470 Cleartext Credential Transmission
|
|
|
|
> CVE-2026-30081 is currently RESERVED by MITRE.
|
|
|
|
## Overview
|
|
|
|
The Quantum Networks QN-I-470 router transmits administrator credentials in cleartext over HTTP, allowing attackers on the same network to intercept authentication data.
|
|
|
|
**CVE ID:** CVE-2026-30081
|
|
**Severity:** Pending
|
|
**CWE:** CWE-319 (Cleartext Transmission of Sensitive Information)
|
|
|
|
---
|
|
|
|
## Impact
|
|
|
|
* Administrative credential disclosure
|
|
* Unauthorized router access
|
|
* DNS and firewall manipulation
|
|
* Potential network-wide compromise
|
|
|
|
---
|
|
|
|
## Affected Device
|
|
|
|
* Quantum Networks QN-I-470
|
|
* Firmware: 6.1.1.B1
|
|
|
|
---
|
|
|
|
## References
|
|
|
|
* https://cwe.mitre.org/data/definitions/319.html
|
|
* https://owasp.org/Top10/A02_2021-Cryptographic_Failures/
|