Ankit Anubhav, a
The flaw, tracked as CVE-2018-7900, resides in the router administration panel and allows credentials information to leak. An attacker could use IoT search engines such as ZoomEye or Shodan to scan the internet for devices having default passwords.
“CVE-2018–7900 makes the process of attacking a router even more simplified. Rather than doing a spray and pray technique (attack any device whether it has default credentials or not), an attacker can easily find a way to tell whether the router has default credentials without the need to connect to the device, since the router panel leaks this information.” reads the blog post published by the expert.
“Hence the attacker can craft a ZoomEye / Shodan dork to implicitly get a list of the devices having default password. “
The expert pointed out that analyzing the HTML source code of login page it is possible to
This information could be used by attackers to query IoT search engines and retrieve a list of devices and associated login.
“How Easy CVE-2018-7900 Makes It Easy to Hack These Devices” continues the expert
Huawei already fixed the vulnerability, but is working with carrier operators for complete resolution.
NewSky will not disclose details of the flaw to avoid its massive exploitation.
Below the timeline of the vulnerability:
(SecurityAffairs – Huawei routers, hacking)