2 matches found
CVE-2022-28371
On Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 and OutDoorUnit ODU 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static certificate for access control. This certificate is embedded in the firmware, and is identical across the fleet of devices. An attacker need only download...
CVE-2022-28371
CVE-2022-28371 affects Verizon 5G Home LVSKIHP IDU 3.4.66.162 and ODU 3.33.101.0. Root cause: the CRTC and ODU RPC endpoints rely on a static certificate embedded in firmware, identical across devices; an attacker can download firmware and extract the private components of the certificates from /...