Lucene search
MitreCVE-2023-38944HistoryMar 06, 2024 - 12:15 a.m.
CVE-2023-38944
2024-03-0600:15:52
CWE-269
mitre
web.nvd.nist.gov
34
cve-2023-38944
multilaser
re160v
re163v
firmware
access control
http header
security vulnerability
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7
Confidence
Low
EPSS
0
Percentile
9.0%
An issue in Multilaser RE160V firmware v12.03.01.09_pt and Multilaser RE163V firmware v12.03.01.10_pt allows attackers to bypass the access control and gain complete access to the application via modifying a HTTP header.
References
Related
vulnrichment
vulnrichment
CVE-2023-38944
2024-03-05 00:00:00
zdt
zdt
Multilaser RE160V Header Manipulation Access Bypass Vulnerability
2024-03-05 00:00:00
cvelist
cvelist
CVE-2023-38944
2024-03-05 00:00:00
prion
prion
Improper access control
2024-03-06 00:15:00
nvd
nvd
CVE-2023-38944
2024-03-06 00:15:52
packetstorm
packetstorm
Multilaser RE160V Header Manipulation Access Bypass
2024-03-04 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2023-38944