CVE-2024-23629

Опубликовано: 26 янв. 2024

Источник: nvd

CVSS3: 9.6

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

An authentication bypass vulnerability exists in the web component of the Motorola MR2600. An attacker can exploit this vulnerability to access protected URLs and retrieve sensitive information.

Ссылки

https://blog.exodusintel.com/2024/01/25/motorola-mr2600-authentication-bypass-vulnerability/
Third Party Advisory
https://blog.exodusintel.com/2024/01/25/motorola-mr2600-authentication-bypass-vulnerability/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:motorola:mr2600_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:motorola:mr2600:-:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00057

Низкий

9.6 Critical

CVSS3

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-287

CWE-863

Связанные уязвимости

GHSA-m295-r33q-79rg

CVSS3: 9.6

github

около 2 лет назад

An authentication bypass vulnerability exists in the web component of the Motorola MR2600. An attacker can exploit this vulnerability to access protected URLs and retrieve sensitive information.

EPSS

Процентиль: 18%

0.00057

Низкий

9.6 Critical

CVSS3

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-287

CWE-863