CVE-2023-38945
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/03/2024
Last modified:
07/01/2025
Description
Multilaser RE160 v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01, Multilaser RE160V v12.03.01.08_pt and V12.03.01.09_pt, and Multilaser RE163V v12.03.01.08_pt allows attackers to bypass the access control and gain complete access to the application via supplying a crafted URL.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:multilaser:re160_firmware:5.07.51_pt_mtl01:*:*:*:*:*:*:* | ||
cpe:2.3:o:multilaser:re160_firmware:5.07.52_pt_mtl01:*:*:*:*:*:*:* | ||
cpe:2.3:h:multilaser:re160:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:multilaser:re160v_firmware:12.03.01.08_pt:*:*:*:*:*:*:* | ||
cpe:2.3:o:multilaser:re160v_firmware:12.03.01.09_pt:*:*:*:*:*:*:* | ||
cpe:2.3:h:multilaser:re160v:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:multilaser:re163v_firmware:12.03.01.08_pt:*:*:*:*:*:*:* | ||
cpe:2.3:h:multilaser:re163v:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page