CVE-2023-38945

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/03/2024
Last modified:
07/01/2025

Description

Multilaser RE160 v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01, Multilaser RE160V v12.03.01.08_pt and V12.03.01.09_pt, and Multilaser RE163V v12.03.01.08_pt allows attackers to bypass the access control and gain complete access to the application via supplying a crafted URL.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:multilaser:re160_firmware:5.07.51_pt_mtl01:*:*:*:*:*:*:*
cpe:2.3:o:multilaser:re160_firmware:5.07.52_pt_mtl01:*:*:*:*:*:*:*
cpe:2.3:h:multilaser:re160:-:*:*:*:*:*:*:*
cpe:2.3:o:multilaser:re160v_firmware:12.03.01.08_pt:*:*:*:*:*:*:*
cpe:2.3:o:multilaser:re160v_firmware:12.03.01.09_pt:*:*:*:*:*:*:*
cpe:2.3:h:multilaser:re160v:-:*:*:*:*:*:*:*
cpe:2.3:o:multilaser:re163v_firmware:12.03.01.08_pt:*:*:*:*:*:*:*
cpe:2.3:h:multilaser:re163v:-:*:*:*:*:*:*:*