The acer_cgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials (for web and Telnet), leading to unauthorized system access.
The acer_cgi.log file stores credentials (usernames and passwords) for the web interface and Telnet service in unencrypted form (cleartext). This file is publicly accessible through the device's web interface without requiring any login credentials. An attacker can download the file directly over the network, read the contained credentials, and use them to take control of the device.
An attacker gains full access to the device through the web interface or Telnet protocol using stolen credentials, resulting in complete system takeover.
Apply patches available from the manufacturer according to references (https://community.acer.com/en/kb/articles/19673). Until the fix is implemented, it is recommended to restrict access to the device's web interface only to trusted networks or IP addresses and disable the Telnet service.
Acer devices equipped with vulnerable firmware containing the acer_cgi.log file — specific models indicated in manufacturer references
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XAcer Wave 7
HWAcerwszystkie wersjeAcer Wave 7 Firmware
OSAcer≤ t7c_gbl_1.01.000055
Related vulnerabilities
Zakodowany na stałe klucz AES w upload.cgi umożliwia wstrzyknięcie backdoora
Command injection w Acer Connect M6E 5G — nieautoryzowane wykonanie poleceń
Acer Connect M6E 5G — hardkodowane klucze API w M3WebServer (Auth Bypass)
Command injection w Acer Connect M6E 5G via FieldX MDM adb messaging
Acer Connect M6E 5G — pominięcie uwierzytelnienia przez procedurę debugowania