CVE-2021-31349
Description
An authentication bypass vulnerability exists in the 128 Technology Session Smart Router due to an improperly used internal HTTP header, allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary code.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.752
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Improper Authentication Vulnerability (CVE-2021-31349) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234