CVE-2020-25988: A UPnP Abuse or, a feature.

So I was playing around with my home router and stumbled upon my first bug/feature. The bug/feature is: Once I’m on the same network (physical/wireless), I can login to your router’s admin panel, by fetching the credentials of ‘admin’ user.

Here’s a short writeup:
[https://niteshsurana.medium.com/cve-2020-25988-a-upnp-abuse-424f0db73129](https://niteshsurana.medium.com/cve-2020-25988-a-upnp-abuse-424f0db73129)

P.S. – If you have any feedback regarding anything or happen to spot any mistakes, please do let me know. Thanks!!

READ:   Highlights of iOS 14, iPadOS 14 and WatchOS 7

Leave a Comment

Your email address will not be published. Required fields are marked *