Security Advisory

CVE-2024-23726

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-21 00:00:00

Last updated 2025-05-30 14:24:04

Assigner mitre

State PUBLISHED

Description

Ubee DDW365 XCNDDW365 devices have predictable default WPA2 PSKs that could lead to unauthorized remote access. A remote attacker (in proximity to a Wi-Fi network) can derive the default WPA2-PSK value by observing a beacon frame. A PSK is generated by using the first six characters of the SSID and the last six of the BSSID, decrementing the last digit.

← Browse all CVEs View on cve.org ↗