CVE-2024-44815

MEDIUM

Hathway Skyworth Router CM5100 <4.1.1.24 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-44815. PoCs published by nitinronge91.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2024-44815, demonstrating how credentials for the Hathway CM5100-511 router are stored in plaintext in the SPI flash memory. The writeup includes steps for firmware extraction, analysis, and verification of the vulnerability.

Description

Vulnerability in Hathway Skyworth Router CM5100 v.4.1.1.24 allows a physically proximate attacker to obtain user credentials via SPI flash Firmware W25Q64JV.

Exploits (1)

nomisec WRITEUP
by nitinronge91 · poc
https://github.com/nitinronge91/Extracting-User-credentials-For-Web-portal-and-WiFi-AP-For-Hathway-Router-CVE-2024-44815-

This repository provides a detailed technical analysis of CVE-2024-44815, demonstrating how credentials for the Hathway CM5100-511 router are stored in plaintext in the SPI flash memory. The writeup includes steps for firmware extraction, analysis, and verification of the vulnerability.

Classification
Writeup 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Hathway CM5100-511 Router (Firmware Version 4.1.1.24)
No auth needed
Prerequisites: Physical access to the router · UART connection tools · Flash programmer (e.g., CH431A) · Firmware analysis tools
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 4.6
EPSS 0.0061
EPSS Percentile 44.3%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-522 CWE-256
Status published
Products (1)
hathway/skyworth_cm5100-511_firmware 4.1.1.24
Published Sep 10, 2024
Tracked Since Feb 18, 2026