Review on πΆ Yeacomm 4G LTE CPE Router with Sim Card Slot, 4G Wi-Fi & Voice Calling, 2 RJ11 and 4 RJ45 Ports, Unlocked 3G 4G Wireless Router for Home/Office, Non-Compatible with Verizon by Megan Green
WARNING MAJOR SECURITY FAILURE
The product was easy to set up, but after connecting to the network I ran a port scan to look for vulnerabilities. Two issues make this modem/router very dangerous1) although HTTP (port 80) is closed on the WAN, the HTTPS port (433) is open and I could not close or block it. 2) There is a published root account and password, and the user cannot change the password according to the provider (see the answer to the question on page 4). The user can only change the password of the administrator account. I was able to access the modem configuration page over the internet and use standard root credentials to access all root-level modem authentications, including firewall and port forwarding. An attacker can redirect all your connections to the gateway and take over everything you do on the Internet. THE FIRMWARE MUST BE FIXED. Also, the modem does not support VPN.
- Acceptable
- Weight
New products
Comments (0)
Top products in πΆ Wifi Routers
Another interesting products
π CERRXIAN RS232 to Ethernet Serial Device Server - TCP/IP Converter with 1Port DB9 RS232 Serial to Ethernet Connectivity
3 Review
π Juiced Systems Silver BizHUB USB-C Multiport Gigabit HDMI Hub with 3 USB 3.0 Ports, Gigabit Ethernet, 4K HDMI, SD/Micro SD, and USB-C Power Delivery
11 Review
π StarTech.com NETRS232 Serial to IP Ethernet Device Server - DIN Rail Mountable - Serial Device Server - Serial Over IP Device Server (Black)
4 Review
π StarTech.com NETRS2321P: 1-Port RS232 to Ethernet IP Converter, Serial over IP Device Server - Black
5 Review