Skip to main content

Creativity for creating PSK ;-)

Ubee DDW365 XCNDDW365 and DDW366 XCNDXW3WB devices have predictable default WPA2 PSKs that could lead to unauthorized remote access. A remote attacker (in proximity to a Wi-Fi network) can derive the default WPA2-PSK value by observing a beacon frame. A PSK is generated by using the first six characters of the SSID and the last six of the BSSID, decrementing the last digit.

#infosec #vulnerability #crypto

🔗 https://vulnerability.circl.lu/vuln/GHSA-jj7g-c984-hr2m

github - GHSA-jj7g-c984-hr2m

vulnerability.circl.lu
#infosec #crypto #Vulnerability

This website uses cookies to recognize revisiting and logged in users. You accept the usage of these cookies by continue browsing this website.

⇧