CVE-2023-51059

2024-01-1600:00:00

mitre

www.cve.org

moko technology ltd

mokosmart

mkgw1 ble gateway

privilege escalation

session management

administrative web interface

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.1%

JSON

An issue in MOKO TECHNOLOGY LTD MOKOSmart MKGW1 BLE Gateway v.1.1.1 and before allows a remote attacker to escalate privileges via the session management component of the administrative web interface.

References

github.com/sbaresearch/advisories/tree/public/2022/SBA-ADV-20220120-01_MOKOSmart_MKGW1_Gateway_Improper_Session_Management

www.mokosmart.com/wp-content/uploads/2019/10/GS-gateway.pdf