CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-25946

Authentication bypass vulnerability in Qrio Lock (Q-SL2) firmware version 2.0.9 and earlier allows a network-adjacent attacker to analyze the product's communication data and conduct an arbitrary operation under certain conditions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.9%

CVSS Severity

CVSS v3 Score 8.8

References

https://jvn.jp/en/jp/JVN48687031/
https://qrio.me/article/announce/2023/4140/
https://jvn.jp/en/jp/JVN48687031/
https://qrio.me/article/announce/2023/4140/

Products affected by CVE-2023-25946

Qrio » Q-Sl2 » Version: N/A

cpe:2.3:h:qrio:q-sl2:-
Qrio » Q-Sl2 Firmware » Version: N/A

cpe:2.3:o:qrio:q-sl2_firmware:-
Qrio » Q-Sl2 Firmware » Version: 2.0.9

cpe:2.3:o:qrio:q-sl2_firmware:2.0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-25946

Products

Pricing

Contact Us