CVE-2023-38946

2024-03-0600:15:52

[email protected]

web.nvd.nist.gov

multilaser re160

firmware v5.07.51

access control

crafted cookie

security vulnerability

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

An issue in Multilaser RE160 firmware v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01 allows attackers to bypass the access control and gain complete access to the application via supplying a crafted cookie.

References

seclists.org/fulldisclosure/2024/Mar/2