CVE-2018-20008

iBall Baton iB-WRB302N20122017 devices have improper access control over the UART interface, allowing physical attackers to discover Wi-Fi credentials (plain text) and the web-console password (base64) via the debugging console.

Date published : 2019-05-28

https://payatu.com/ibaton-routers-responsible-disclosure/

https://www.iball.co.in/Category/Baton/283