Verizon 4G LTE Network Extender 0.4.038.2131 Weak Credential Algorithm

Posted by deepcore on April 14, 2022 – 1:11 am

Verizon’s 4G LTE Network Extender is utilizing a weak default admin password generation algorithm. The password is generated using the last 4 values from device’s MAC address which is disclosed on the main webUI login page to an unauthenticated attacker. The values are then concatenated with the string LTEFemto resulting in something like LTEFemtoD080 as the default Admin password. Versions GA4.38 through 0.4.038.2131 are affected.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Spring4Shell Code Execution Delta Controls enteliTOUCH 3.40.3935 Cookie User Password Disclosure »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Verizon 4G LTE Network Extender 0.4.038.2131 Weak Credential Algorithm

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL