CVE-2023-41351
Summary
A vulnerability in the Chunghwa Telecom NOKIA G-040W-Q allows unauthenticated remote attackers to bypass authentication using an alternative URL. This bypass enables attackers to log in as any user, including administrators, to perform unauthorized actions or disrupt services.
IFF Assessment
This vulnerability allows unauthenticated attackers to gain administrative access, posing a significant risk to device security and availability.
Severity
Defender Context
Defenders should be aware of this authentication bypass vulnerability affecting specific router models. Prioritizing patching or mitigation efforts for these devices is crucial to prevent unauthorized access and potential service disruptions. Monitoring for unusual login attempts or administrative actions on these devices is also recommended.