CVE-2026-3356
Missing Authentication for Critical Function vulnerability in Anritsu Remote Spectrum Monitor
Vexday Risk Score
28Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 9.3EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
31 mar 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a deployment error.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
Anritsu · Remote Spectrum Monitor MS27100AAnritsu · Remote Spectrum Monitor MS27101AAnritsu · Remote Spectrum Monitor MS27102AAnritsu · Remote Spectrum Monitor MS27103A¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →