CVE-2023-45466

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 13, 2023

Updated: Oct 16, 2023

CWE ID 77

Summary

CVE-2023-45466 is a newly discovered vulnerability affecting the Netis N3Mv2-V1.0.1.865 firmware. This issue allows an attacker to execute arbitrary commands through the pin_host parameter in the WPS (Wi-Fi Protected Setup) Settings, potentially leading to unauthorized access or system compromise. The vulnerability was discovered during routine security testing, and it is recommended that users update their Netis devices to the latest firmware version to mitigate this risk. Failure to patch this vulnerability may result in significant security consequences.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s8JcI6
https://www.cve.org/CVERecord?id=CVE-2023-45466
https://nvd.nist.gov/vuln/detail/CVE-2023-45466

Back to Vulnerability Database

CVE-2023-45466

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations