PT-2023-28967 · Logitech+1 · Logitec Corporation Routers+1

Goroh_Kun

Published

2023-11-16

Updated

2024-02-28

CVE-2023-43757

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions ELECOM CO.,LTD. routers (affected versions not specified) LOGITEC CORPORATION routers (affected versions not specified)

Description The issue is related to inadequate encryption strength in multiple routers, allowing a network-adjacent unauthenticated attacker to guess the encryption key used for wireless LAN communication and intercept the communication.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Inadequate Encryption Strength

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-326

Related Identifiers

CVE-2023-43757

Affected Products

Elecom Co.

Logitec Corporation Routers

PT-2023-28967 · Logitech+1 · Logitec Corporation Routers+1

CVE-2023-43757

Weakness Enumeration

Related Identifiers

Affected Products

References · 7