CVE-2023-38132

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 18, 2023

Updated: Aug 24, 2023

Summary

CVE-2023-38132 is a vulnerability affecting all versions of LOGITEC CORPORATION's LAN-W451NGR devices. The issue involves improper access control in the telnet service, allowing unauthenticated attackers to gain unauthorized access. This vulnerability poses a significant risk, as it enables attackers to remotely log in to the device without proper credentials. Successful exploitation could result in unauthorized modification, disclosure, or denial of service to the affected device. It is recommended that users immediately update their devices to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sRt-cC
https://www.cve.org/CVERecord?id=CVE-2023-38132
https://nvd.nist.gov/vuln/detail/CVE-2023-38132

Back to Vulnerability Database

CVE-2023-38132

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations