Meross MSS550X Missing Encryption of Sensitive Data

Posted date 11/04/2021
Importance
4 - High
Affected Resources

Smart Wi-Fi 2 Way Wall Switch (MSS550X) 3.1.3 version and below.

Description

INCIBE has coordinated the publication of a vulnerability in Meross MSS550X, with the internal code INCIBE-2021-0451, which has been discovered by Gerard Fuguet Morales.

CVE-2021-3774 has been assigned to this vulnerability. A CVSS v3.1 base score of 7.4 has been calculated; the CVSS vector string is AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N.

Solution

This vulnerability has been solved by Meross in MSS550X version 3.2.3.

Detail

Meross Smart Wi-Fi 2 Way Wall Switch (MSS550X), on its 3.1.3 version and before, creates an open Wi-Fi Access Point without the required security measures in its initial setup.

This could allow a remote attacker to obtain the Wi-Fi SSID as well as the password configured by the user from Meross app via Http/JSON plain request.

CWE-319: Cleartext Transmission of Sensitive Information.

If you have any information regarding this advisory, please contact INCIBE as indicated in the CVE Assignment and publication section.

Encuesta valoración

References list
Smart Wi-Fi 2 Way Wall Switch MSS550X EU
How Cybercriminals Steal Wi-Fi Passwords through an IoT device even against Machine in the Middle
My neighbor's flat smells like data
Cuando un dispositivo IoT pone en riesgo la seguridad de la WiFi de tu casa
Etiquetas