PT-2023-25407 · Logitech · Logitec Lan-Wh300An/Dgp+3
Published
2023-08-18
·
Updated
2024-10-21
·
CVE-2023-35991
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
LOGITEC LAN-W300N/DR all versions
LOGITEC LAN-WH300N/DR all versions
LOGITEC LAN-W300N/P all versions
LOGITEC LAN-WH450N/GP all versions
LOGITEC LAN-WH300AN/DGP all versions
LOGITEC LAN-WH300N/DGP all versions
LOGITEC LAN-WH300ANDGPE all versions
Description
A hidden functionality vulnerability in LOGITEC wireless LAN routers allows an unauthenticated attacker to log in to the product's certain management console and execute arbitrary OS commands.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Logitec Lan-W300N/Dr
Logitec Lan-W300N/Pgrb
Logitec Lan-Wh300An/Dgp
Logitec Lan-Wh450N/Gp