Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentMitreVULNRICHMENT:CVE-2023-38946
HistoryMar 06, 2024 - 12:00 a.m.

CVE-2023-38946

2024-03-0600:00:00
mitre
github.com
2
multilaser re160
firmware v5.07.51
access control bypass
crafted cookie
cve-2023-38946

AI Score

7.1

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

JSON

An issue in Multilaser RE160 firmware v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01 allows attackers to bypass the access control and gain complete access to the application via supplying a crafted cookie.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:multilaser:re160_firmware:*:*:*:*:*:*:*:*"
    ],
    "vendor": "multilaser",
    "product": "re160_firmware",
    "versions": [
      {
        "status": "affected",
        "version": "v5.07.51_pt_mtl01"
      },
      {
        "status": "affected",
        "version": "v5.07.52_pt_mtl01"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Related

cvelist 1
prion 1
cve 1
nvd 1
packetstorm 1
zdt 1
cvelist
cvelist
CVE-2023-38946
2024-03-06 00:00:00
prion
prion
Improper access control
2024-03-06 00:15:00
cve
cve
CVE-2023-38946
2024-03-06 00:15:52
nvd
nvd
CVE-2023-38946
2024-03-06 00:15:52
packetstorm
packetstorm
Multilaser RE160 Cookie Manipulation Access Bypass
2024-03-04 00:00:00
zdt
zdt
Multilaser RE160 Cookie Manipulation Access Bypass Vulnerability
2024-03-05 00:00:00

AI Score

7.1

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

JSON
Related for VULNRICHMENT:CVE-2023-38946
cvelist1prion1cve1nvd1packetstorm1zdt1