CVE-2023-7211
MEDIUMDescription
A vulnerability was found in Uniway Router 2.0. It has been declared as critical. This vulnerability affects unknown code of the component Administrative Web Interface. The manipulation leads to reliance on ip address for authentication. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. VDB-249766 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Is your site exposed to CVE-2023-7211?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| uniwayinfo | uw-302vp_firmware |
| uniwayinfo | uw-302vp |
| uniwayinfo | uw-301vpw_firmware |
| uniwayinfo | uw-301vpw |
| uniwayinfo | uw-311vpw_firmware |
| uniwayinfo | uw-311vpw |
| uniwayinfo | uw-101x_firmware |
| uniwayinfo | uw-101x |
| uniwayinfo | uw-323dac_firmware |
| uniwayinfo | uw-323dac |
References
Exploits
Frequently Asked Questions
What is CVE-2023-7211? +
How severe is CVE-2023-7211? +
What products are affected by CVE-2023-7211? +
How do I check if I'm vulnerable to CVE-2023-7211? +
Related Vulnerabilities
The LevelOne WBR-6012 router with firmware R0.40e6 has an authentication bypass vulnerability in its web application due to reliance on …
Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to 25.2.169 and Application prior to 25.2.1518 (VA and SaaS deployments) expose …
A vulnerability has been reported to affect Network & Virtual Switch. If exploited, the vulnerability could allow local authenticated administrators …
A vulnerability was found in Uniway Router up to 2.0. It has been rated as critical. Affected by this issue …