CVE-2023-38944 | Multilaser RE160V/RE163V 12.03.01.09_pt/12.03.01.10_pt Web Management Interface RouterCfm.cfg access control

Inserito da Angelo Barbosa | Mar 4, 2024 | CVE

A vulnerability, which was classified as critical, was found in Multilaser RE160V and RE163V 12.03.01.09_pt/12.03.01.10_pt. This affects an unknown part of the file /cgi-bin/DownloadCfg/RouterCfm.cfg of the component Web Management Interface. The manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2023-38944. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38944 | Multilaser RE160V/RE163V 12.03.01.09_pt/12.03.01.10_pt Web Management Interface RouterCfm.cfg access control

Post correlati

CVE-2024-6595 | GitLab Community Edition/Enterprise Edition up to 16.11.5/17.0.3/17.1.1 uncontrolled search path (Issue 417975)

CVE-2024-20416 | Cisco RV340/RV345 HTTP Request length parameter (cisco-sa-sb-rv34x-rce-7pqFU2e)

CVE-2023-23438 | Honor LGE-AN00 prior 6.0.0.188 unknown vulnerability

CVE-2024-27768 | Unitronics Unistream Unilogic prior 1.35.227 path traversal