Improper authentication vulnerability in Rakuten WiFi Pocket all versions allows a network-adjacent attacker to log in to the product's Management Screen. As a result, sensitive information may be obtained and/or the settings may be changed.
References
Link | Resource |
---|---|
https://jvn.jp/en/jp/JVN55217369/ | Third Party Advisory |
https://network.mobile.rakuten.co.jp/product/internet/rakuten-wifi-pocket/support/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jpcert
Published: 2023-08-23T03:16:56.417Z
Updated: 2023-08-23T03:16:56.417Z
Reserved: 2023-08-14T01:52:11.134Z
Link: CVE-2023-40282
JSON object: View
NVD Information
Status : Modified
Published: 2023-08-23T04:15:12.417
Modified: 2024-05-17T02:28:07.330
Link: CVE-2023-40282
JSON object: View
Redhat Information
No data.
CWE