3 matches found
CVE-2023-32645
A leftover debug code vulnerability exists in the httpd debug credentials functionality of Yifan YF325 v1.020221108. A specially crafted network request can lead to authentication bypass. An attacker can send a network request to trigger this vulnerability...
CVE-2023-32645
creationtimestamp| type| source ---|---|--- 2023-10-11 20:17:39+00:00| seen| https://t.me/cibsecurity/72112 2023-10-12 19:17:31+00:00| seen| https://t.me/truesecator/4958 2025-02-04 14:55:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113946192548589563 2025-02-04 18:54:42+00:00| see...
CVE-2023-32645
CVE-2023-32645 concerns Yifan YF325, v1.0_20221108, where a leftover httpd debug credentials feature enables authentication bypass via a crafted network request. The issue is reported as remote, with CVSS v3.1 base score 9.8 (CRITICAL; Network access, no user interaction; confidentiality, integri...