NuCom 11N Wireless Router 5.07.90 Privilege Escalation via Configuration Backup

Advisories

NuCom 11N Wireless Router 5.07.90 Privilege Escalation via Configuration Backup

severity: high
date: 12/31/2025
Affecting: 5.07.90_multi_NCM01
5.07.89_multi_NCM01
5.07.72_multi_NCM01
CVE: CVE-2021-47726
CWE: CWE-522 Insufficiently Protected Credentials
CVSS: 8.7
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: ExploitDB-49634
NuCom Vendor Homepage
Zero Science Lab Disclosure (ZSL-2021-5629)
Credit: LiquidWorm as Gjoko Krstic of Zero Science Lab
Description: NuCom 11N Wireless Router 5.07.90 contains a privilege escalation vulnerability that allows non-privileged users to access administrative credentials through the configuration backup endpoint. Attackers can send a crafted HTTP GET request to the backup configuration page with a specific cookie to retrieve and decode the admin password in Base64 format.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo