Vulnerability Details CVE-2023-45194
Use of default credentials vulnerability in MR-GM2 firmware Ver. 3.00.03 and earlier, and MR-GM3 (-D/-K/-S/-DK/-DKS/-M/-W) firmware Ver. 1.03.45 and earlier allows a network-adjacent unauthenticated attacker to intercept wireless LAN communication, when the affected product performs the communication without changing the pre-shared key from the factory-default configuration.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.0%
CVSS Severity
CVSS v3 Score 4.3
References
Products affected by CVE-2023-45194
-
cpe:2.3:h:mrl:mr-gm2:-
-
cpe:2.3:h:mrl:mr-gm3-d:-
-
cpe:2.3:h:mrl:mr-gm3-dks:-
-
cpe:2.3:h:mrl:mr-gm3-k:-
-
cpe:2.3:h:mrl:mr-gm3-m:-
-
cpe:2.3:h:mrl:mr-gm3-s:-
-
cpe:2.3:h:mrl:mr-gm3-w:-
-
cpe:2.3:o:mrl:mr-gm2_firmware:*
-
cpe:2.3:o:mrl:mr-gm3-d_firmware:*
-
cpe:2.3:o:mrl:mr-gm3-dks_firmware:*
-
cpe:2.3:o:mrl:mr-gm3-k_firmware:*
-
cpe:2.3:o:mrl:mr-gm3-m_firmware:*
-
cpe:2.3:o:mrl:mr-gm3-s_firmware:*
-
cpe:2.3:o:mrl:mr-gm3-w_firmware:*