CVE-2023-45744 | Peplink Smart Reader 1.2.0 Web Interface upload_config.cgi access control (TALOS-2023-1866)

Posted by Angelo Barbosa | Apr 17, 2024 | CVE

A vulnerability was found in Peplink Smart Reader 1.2.0. It has been classified as critical. Affected is an unknown function of the file /cgi-bin/upload_config.cgi of the component Web Interface. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2023-45744. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-45744 | Peplink Smart Reader 1.2.0 Web Interface upload_config.cgi access control (TALOS-2023-1866)

Related Posts

CVE-2024-22551 | WhatACart 2.0.7 /site/default/search cross site scripting (ID 176314)

CVE-2024-2801 | Shopkeeper Extender Plugin up to 3.5 on WordPress cross site scripting

CVE-2024-38288 | R-HUB TurboMeeting up to 8.x Certificate Signing Request command injection (GHSA-gx6g-8mvx-3q5c)

CVE-2024-31351 | Copymatic Plugin up to 1.6 on WordPress unrestricted upload