| Título | Multilaser Sirius RE016 MLT1.0 Authentication Bypass |
|---|
| Descrição | This vulnerability allows a remote attacker to change the administrator password on the Multilaser Sirius RE016 router without authentication via the /cgi-bin/cstecgi.cgi endpoint. This enables full control over the device, compromising network security and allowing persistence and privilege escalation attacks. |
|---|
| Fonte | ⚠️ https://github.com/DefaultCh40s/RE016/blob/main/re016.py |
|---|
| Utilizador | DefaultCh40s (UID 85145) |
|---|
| Submissão | 24/05/2025 22h30 (há 1 Ano) |
|---|
| Moderação | 01/06/2025 13h11 (8 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 310770 [Multilaser Sirius RE016 MLT1.0 Password Change /cgi-bin/cstecgi.cgi Autenticação fraca] |
|---|
| Pontos | 17 |
|---|