Overview

The Keenetic Router was found to expose sensitive configuration details through JavaScript files ndmComponents.js and version.js. These files include detailed information about enabled components and system version, hardware ID, and operational modes which can be leveraged by an attacker to gain insights into the system configuration without authentication and potentially exploit specific vulnerabilities or misconfigurations, affecting over 387,000 devices on the Internet.

Untitled

Affected Devices

Vendor: Keenetic

Hardware:

SoftwareVersion: