Motorola MR2600 Authentication Bypass Vulnerability
CVE-2024-23629

7.5HIGH

Key Information:

Vendor: Motorola
Status: MR2600
Vendor: CVE Published:; 26 January 2024

Summary

An authentication bypass vulnerability affects the web component of the Motorola MR2600 router, enabling unauthorized users to exploit the flaw. This vulnerability permits attackers to navigate protected URLs, potentially leading to the exposure of sensitive information. Organizations using the Motorola MR2600 should take immediate action to mitigate risks associated with this vulnerability.

Affected Version(s)

MR2600 1.0.7

References

https://blog.exodusintel.com/2024/01/25/motorola-mr2600-a...

third-party-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 26, 2024
Vulnerability Reserved
Jan 18, 2024

Credit

Exodus Intelligence