An issue was discovered on Mercusys MW325R EU V3 MW325R(EU)_V3_1.11.0 221019 devices. A WAN attacker can make the admin interface unreachable/invisible via an unauthenticated HTTP request. Verification of the data sent by the user does not occur. The web server does not crash, but the admin interface becomes invisible, because the files necessary to display the content are no longer available. A reboot of the router is typically required to restore the correct behavior.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://k4m1ll0.com/cve-2023-46297.html |
History
Thu, 22 Aug 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-755 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-22T18:59:08.606Z
Reserved:
Link: CVE-2023-46297
Vulnrichment
Updated: 2024-08-02T20:45:40.714Z
NVD
Status : Awaiting Analysis
Published: 2024-05-29T16:15:09.423
Modified: 2024-11-21T08:28:14.997
Link: CVE-2023-46297
Redhat
No data.