Authentication Bypass by Alternate Name

CVE-2023-1803

High

9.8/10

Summary

Authentication Bypass by Alternate Name vulnerability in DTS Electronics Redline Router firmware allows Authentication Bypass.This issue affects Redline Router: before 7.17.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-289 - Authentication Bypass by Alternate Name

The software performs authentication based on the name of a resource being accessed, or the name of the actor performing the access, but it does not properly check all possible names for that resource or actor.

References

Advisory Timeline

Published Apr 14, 2023

Authentication Bypass by Alternate Name

CVE-2023-1803

Summary

CWE-289 - Authentication Bypass by Alternate Name

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS