ACERA 1320 and 1310 Firmware Authentication Bypass Vulnerability

ACERA 1320 and 1310 Firmware Authentication Bypass Vulnerability

CVE-2023-42771 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Authentication bypass vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310 firmware ver.01.26 and earlier allows a network-adjacent unauthenticated attacker who can access the affected product to download configuration files and/or log files, and upload configuration files and/or firmware. They are affected when running in ST(Standalone) mode.

Learn more about our Network Penetration Testing.