CVE-2023-38945

2024-03-0600:15:52

[email protected]

web.nvd.nist.gov

access control bypass

application access

crafted url

multilaser re160

multilaser re163v

security vulnerability

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

Multilaser RE160 v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01, Multilaser RE160V v12.03.01.08_pt and V12.03.01.09_pt, and Multilaser RE163V v12.03.01.08_pt allows attackers to bypass the access control and gain complete access to the application via supplying a crafted URL.

References

seclists.org/fulldisclosure/2024/Mar/1