CVE-2020-25988

MEDIUM

Genexis Platinum 4410 V2.1 (P4410-V2-1.34H) - Cleartext Sensitive Info via UPnP X_GetAccess

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-25988. PoCs published by Nitesh Surana.

AI-analyzed exploit summary This exploit leverages the UPnP protocol to extract the cleartext password of the 'admin' user from Genexis Platinum 4410 routers by invoking the 'X_GetAccess' action. It uses the upnpy library to discover devices and interact with the vulnerable service.

Description

UPNP Service listening on port 5555 in Genexis Platinum 4410 Router V2.1 (P4410-V2–1.34H) has an action 'X_GetAccess' which leaks the credentials of 'admin', provided that the attacker is network adjacent.

Exploits (1)

exploitdb WORKING POC
by Nitesh Surana · pythonremotehardware
https://www.exploit-db.com/exploits/49075

This exploit leverages the UPnP protocol to extract the cleartext password of the 'admin' user from Genexis Platinum 4410 routers by invoking the 'X_GetAccess' action. It uses the upnpy library to discover devices and interact with the vulnerable service.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Genexis Platinum 4410 Router 2.1 (P4410-V2-1.34H)
No auth needed
Prerequisites: Network access to the vulnerable router · UPnP enabled on the target device
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
https://youtu.be/GOMLavacqSI
Various Sources x_refsource_misc
https://medium.com/%40niteshsurana/424f0db73129
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/49075

Scores

CVSS v3 6.5
EPSS 0.0302
EPSS Percentile 85.7%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-319
Status published
Products (1)
genexis/platinum_4410_firmware p4410-v2-1.34h
Published Nov 17, 2020
Tracked Since Feb 18, 2026