How severe is CVE-2023-46297?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.1 out of 10.

What type of vulnerability is CVE-2023-46297?

This is classified as CWE-755, which is a common weakness in software security.

CVE-2023-46297 - MEDIUM Severity | CVSS 5.1

Vulnerability Description

An issue was discovered on Mercusys MW325R EU V3 MW325R(EU)_V3_1.11.0 221019 devices. A WAN attacker can make the admin interface unreachable/invisible via an unauthenticated HTTP request. Verification of the data sent by the user does not occur. The web server does not crash, but the admin interface becomes invisible, because the files necessary to display the content are no longer available. A reboot of the router is typically required to restore the correct behavior.

Related Vulnerabilities

CVE-2023-42559

MEDIUM

CVSS:5.2(Medium)

Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time.

CWE-7552023

CVE-2019-6841

MEDIUM

CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon M340 (all firmware versions), and Modicon BMxCRA and 140CRA ...

CWE-7552019

CVE-2019-6842

MEDIUM

CVSS:4.9(Medium)

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Serv...

CWE-7552019

CVE-2019-6843

MEDIUM

CVSS:4.9(Medium)

CWE-7552019

CVE-2019-6844

MEDIUM

CVSS:4.9(Medium)

CWE-7552019

CVE-2019-6847

MEDIUM

CVSS:4.9(Medium)

CWE-7552019