← back
CVE-2023-45194

CVE-2023-45194

EPSS 0.2%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
11 Oct 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Use of default credentials vulnerability in MR-GM2 firmware Ver. 3.00.03 and earlier, and MR-GM3 (-D/-K/-S/-DK/-DKS/-M/-W) firmware Ver. 1.03.45 and earlier allows a network-adjacent unauthenticated attacker to intercept wireless LAN communication, when the affected product performs the communication without changing the pre-shared key from the factory-default configuration.
Affected products
Micro Research Ltd. · MR-GM2Micro Research Ltd. · MR-GM3 (-D/-K/-S/-DK/-DKS/-M/-W)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/vu/JVNVU99039725/https://www.mrl.co.jp/20231005_security/