Wasn't it a well-known issue?!
- MTK_CHEETAH_AP_2.4G
- MTK_CHEETAH_AP_5G
It always broadcasts those two SSIDs when boot up, no matter if just after a hard-reset or fully configuered with 4 custom SSIDs. So taking screenshot is so easy.
As OP said, it allows full access to the LAN(br-lan) without any key. I've witnessed that it blindly allows access to the entire network, and even it was easily done by hand-click and click on a plain 5-yo PC.
So basically it's possible to steal information and find vulnerabilities every time a MT3000 reboots by installing a special rogue device within the Wi-Fi coverage.
Even though, I don't really care much about it because it disappears soon. There's no scheduled reboot, moreover nothing is so much valuable that someone would target me, wait for months, and then cracking internal security in that short time. I'm just aware.
https://www.reddit.com/r/GlInet/comments/16y1ebs/
- I don't understand but seems that it can't be easily fixed. If so, from a strict security perspective, it has to be unbridged during the boot. Though I don't want to strongly request to fix.