CVE-2023-23901

Name of the Vulnerable Software and Affected Versions SkyBridge MB-A200 versions 01.00.05 and earlier SkyBridge BASIC MB-A130 versions 1.4.1 and earlier

Description The issue is related to an improper following of a certificate's chain of trust, which may allow a remote unauthenticated attacker to eavesdrop on or alter the communication sent to the WebUI of the product.

Recommendations For SkyBridge MB-A200 versions 01.00.05 and earlier, update to a version later than 01.00.05 to resolve the issue. For SkyBridge BASIC MB-A130 versions 1.4.1 and earlier, update to a version later than 1.4.1 to resolve the issue. As a temporary workaround, consider restricting access to the WebUI to minimize the risk of exploitation.