7 matches found
CVE-2023-40282
Improper authentication vulnerability in Rakuten WiFi Pocket all versions allows a network-adjacent attacker to log in to the product's Management Screen. As a result, sensitive information may be obtained and/or the settings may be changed...
Authentication flaw
UNSUPPPORTED WHEN ASSIGNED Improper authentication vulnerability in Rakuten WiFi Pocket all versions allows a network-adjacent attacker to log in to the product's Management Screen. As a result, sensitive information may be obtained and/or the settings may be changed...
Rakuten WiFi Pocket vulnerable to improper authentication
Overview Rakuten WiFi Pocket provided by Rakuten Mobile, Inc. is a mobile router. Management Screen of Rakuten WiFi Pocket contains an improper authentication vulnerability CWE-287. Sato Nobuhiro of Suzuki Motor Corporation and You Okuma of LAC Co., Ltd. reported this vulnerability to IPA...
CVE-2023-40282
Improper authentication vulnerability in Rakuten WiFi Pocket all versions allows a network-adjacent attacker to log in to the product's Management Screen. As a result, sensitive information may be obtained and/or the settings may be changed...
CVE-2023-40282
The CVE-2023-40282 entry concerns Rakuten WiFi Pocket, with an improper authentication vulnerability (CWE-287) that allows a network-adjacent attacker to log in to the Management Screen. Affected: Rakuten WiFi Pocket (all versions mentioned as affected; 2B/2C reportedly unaffected per JVN). Root ...
Rakuten WiFi Pocket 授权问题漏洞
The Rakuten WiFi Pocket is a wireless router from Rakuten Japan. A security vulnerability exists in Rakuten WiFi Pocket that stems from the presence of an incorrect authentication vulnerability that would allow a network-adjacent attacker to log in to the product's administration screen and...
JVN#55217369: Rakuten WiFi Pocket vulnerable to improper authentication
Rakuten WiFi Pocket provided by Rakuten Mobile, Inc. is a mobile router. Management Screen of Rakuten WiFi Pocket contains an improper authentication vulnerability CWE-287. Impact An attacker who can access the product may log in to the product's Management Screen. As a result, sensitive...