An issue in Multilaser RE160V firmware v12.03.01.09_pt and Multilaser RE163V firmware v12.03.01.10_pt allows attackers to bypass the access control and gain complete access to the application via modifying a HTTP header.
[
{
"cpes": [
"cpe:2.3:o:multilaser:re160v_firmware:*:*:*:*:*:*:*:*"
],
"vendor": "multilaser",
"product": "re160v_firmware",
"versions": [
{
"status": "affected",
"version": "v12.03.01.09_pt"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:multilaser:re163v_firmware:*:*:*:*:*:*:*:*"
],
"vendor": "multilaser",
"product": "re163v_firmware",
"versions": [
{
"status": "affected",
"version": "v12.03.01.10_pt"
}
],
"defaultStatus": "unknown"
}
]