Lucene search

[email protected]NVD:CVE-2023-30403

HistoryMay 02, 2023 - 8:15 p.m.

CVE-2023-30403

2023-05-0220:15:10

CWE-613

[email protected]

web.nvd.nist.gov

aigital

wireless-n repeater

authentication bypass

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

40.3%

JSON

An issue in the time-based authentication mechanism of Aigital Aigital Wireless-N Repeater Mini_Router v0.131229 allows attackers to bypass login by connecting to the web app after a successful attempt by a legitimate user.

Affected configurations

NVD

Node

aigitalwireless-n_repeater_mini_router_firmwareMatch0.131229

AND

aigitalwireless-n_repeater_mini_routerMatch-

References

dl.packetstormsecurity.net/2305-exploits/aigitalwnr-bypass.txt

mandomat.github.io/2023-04-13-testing-a-cheap-wifi-repeater/

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

40.3%

JSON

Related for NVD:CVE-2023-30403

cve1 cvelist1 prion1