CVE-2023-35835

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 23, 2024

Updated: Feb 6, 2024

Summary

CVE-2023-35835: A vulnerability was discovered in the SolaX Pocket WiFi 3 devices with firmware versions up to 3.001.02. The WiFi access point provided for initial configuration lacks any form of network authentication, making the network and its associated web-based configuration utility and ModBus protocol interface open and accessible to unauthorized users. This issue poses a significant risk to the security and confidentiality of data transmitted over these networks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SolaX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uQiszu
https://www.cve.org/CVERecord?id=CVE-2023-35835
https://nvd.nist.gov/vuln/detail/CVE-2023-35835

Back to Vulnerability Database

CVE-2023-35835

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations