CRITICAL🇵🇱 Wersja polska

CVE-2023-49262

CVSS 9.8v3.1pub. 2024-01-12upd. 2025-06-03

The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session.

🤖 AI Analysis
How it works

An attacker sends an HTTP request to the device with an intentionally overflowed value in the "authentication" Cookie field, causing an integer overflow error (CWE-190). As a result of this overflow, the authentication mechanism (CWE-287) is bypassed, provided that an active session of another user exists at that moment. This allows the attacker to access protected resources without knowledge of valid credentials.

Impact

An attacker can gain unauthorized access to the device management interface with full privileges, which may result in disclosure of sensitive configuration data, modification of network settings, or complete device takeover.

Mitigation & patch

Patches available from the manufacturer should be applied according to the references. As additional remedial measures, it is recommended to restrict access to the device management interface solely to trusted networks and to monitor active user sessions.

Who is affected

Hongdian H8951-4G-Esp devices and Hongdian H8951-4G-Esp Firmware software — specific versions indicated in manufacturer references.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Hongdian H8951 4g Esp

    HW
    Hongdian
    wszystkie wersje
  • Hongdian H8951 4g Esp Firmware

    OS
    Hongdian
    < 2310271149
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2023-49253CRITICAL9.8PL ✓ten sam produkt

Hardkodowane hasło roota w urządzeniu Hongdian H8951-4G-Esp

CVE-2023-49255CRITICAL9.8PL ✓ten sam produkt

Hongdian H8951-4G-Esp — dostęp do konsoli routera bez uwierzytelnienia

CVE-2023-49256HIGH7.5ten sam produkt

It is possible to download the configuration backup without authorization and decrypt included passwords using...

CVE-2023-49257HIGH8.8ten sam produkt

An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility ...

CVE-2023-49259HIGH7.5ten sam produkt

The authentication cookies are generated using an algorithm based on the username, hardcoded secret and the up...