Описание
Missing authentication for critical function exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0 and earlier, which may allow a remote unauthenticated attacker to execute some critical functions without authentication, e.g., rebooting the product.
Missing authentication for critical function exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0 and earlier, which may allow a remote unauthenticated attacker to execute some critical functions without authentication, e.g., rebooting the product.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2023-23906
- https://jvn.jp/en/jp/JVN40604023
- https://www.seiko-sol.co.jp/archives/73969
- https://www.seiko-sol.co.jp/products/skybridge/skybridge_download/mb-a100
- https://www.seiko-sol.co.jp/products/skybridge/skybridge_download/mb-a130
- https://www.seiko-sol.co.jp/products/skybridge/skybridge_download/mb-a200
- https://www.seiko-sol.co.jp/products/skyspider/skyspider_download/mb-r210
Связанные уязвимости
CVSS3: 7.5
nvd
больше 2 лет назад
Missing authentication for critical function exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0 and earlier, which may allow a remote unauthenticated attacker to execute some critical functions without authentication, e.g., rebooting the product.