ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2) through 3.40(AHQ.3), allow remote authenticated users to obtain authentication data by making direct HTTP requests and then reading the HTML source, as demonstrated by a request for (1) RemMagSNMP.html, which discloses SNMP communities; or (2) WLAN.html, which discloses WEP keys.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Prestige_660 | Zyxel | h-d1 (including) | h-d1 (including) |
| Prestige_660 | Zyxel | h-d3 (including) | h-d3 (including) |
| Prestige_661 | Zyxel | hw-d1 (including) | hw-d1 (including) |
| Zynos | Zyxel | 3.40-agd.2 (including) | 3.40-agd.2 (including) |
| Zynos | Zyxel | 3.40-agl.3 (including) | 3.40-agl.3 (including) |
| Zynos | Zyxel | 3.40-ahq.0 (including) | 3.40-ahq.0 (including) |
| Zynos | Zyxel | 3.40-ahq.3 (including) | 3.40-ahq.3 (including) |
| Zynos | Zyxel | 3.40-ahz.0 (including) | 3.40-ahz.0 (including) |
| Zynos | Zyxel | 3.40-atm.0 (including) | 3.40-atm.0 (including) |