Vulnerability Details CVE-2023-41351
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of authentication bypass, which allows an unauthenticated remote attacker to bypass the authentication mechanism to log in to the device by an alternative URL. This makes it possible for unauthenticated remote attackers to log in as any existing users, such as an administrator, to perform arbitrary system operations or disrupt service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.0%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-41351
-
cpe:2.3:h:nokia:g-040w-q:-
-
cpe:2.3:o:nokia:g-040w-q_firmware:g040wqr201207