Description
Tellion HN-2204AP routers contain an unauthenticated configuration disclosure vulnerability in the /cgi-bin/system_config_file management endpoint. The endpoint allows remote retrieval of a compressed configuration archive without requiring authentication or authorization. The exposed configuration may include administrative credentials, wireless keys, and other sensitive settings, enabling an unauthenticated attacker to obtain information that can facilitate further compromise of the device or network.
References (3)
Core 3
Core References
Various Sources exploit
https://packetstorm.news/files/id/154752/
Various Sources product
https://web.archive.org/web/20190525010559/https://www.tellion.com/
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/tellion-hn2204ap-unauthenticated-config-disclosure
Scores
CVSS v4
8.7
EPSS
0.0049
EPSS Percentile
38.4%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-306
Status
published
Products (1)
Tellion, Inc./HN-2204AP Router
Published
Nov 26, 2025
Tracked Since
Feb 18, 2026