CVE-2023-31196
HIGH
Published Jun 13, 20233y ago · Modified Jun 17, 20262w ago
7.5 CVSS 3.1
Published Jun 13, 2023 3y ago
Last Modified Jun 17, 2026 2w ago
Description
Missing authentication for critical function in Wi-Fi AP UNIT allows a remote unauthenticated attacker to obtain sensitive information of the affected products. Affected products and versions are as follows: AC-PD-WAPU v1.05_B04 and earlier, AC-PD-WAPUM v1.05_B04 and earlier, AC-PD-WAPU-P v1.05_B04P and earlier, AC-PD-WAPUM-P v1.05_B04P and earlier, AC-WAPU-300 v1.00_B07 and earlier, AC-WAPUM-300 v1.00_B07 and earlier, AC-WAPU-300-P v1.00_B07 and earlier, and AC-WAPUM-300-P v1.00_B07 and earlier
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability None
Threat Intelligence
No active exploitation signals — not in CISA KEV and no EPSS score yet.
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-306 Missing Authentication for Critical Function Authentication
Affected Products 16
| Vendor | Product | Version | Range |
|---|---|---|---|
| inaba | ac-pd-wapu_firmware | * | ≤1.05_b04 |
| inaba | ac-pd-wapu | * | any |
| inaba | ac-pd-wapum_firmware | * | ≤1.05_b04 |
| inaba | ac-pd-wapum | * | any |
| inaba | ac-pd-wapu-p_firmware | * | ≤1.05_b04p |
| inaba | ac-pd-wapu-p | * | any |
| inaba | ac-pd-wapum-p_firmware | * | ≤1.05_b04p |
| inaba | ac-pd-wapum-p | * | any |
| inaba | ac-wapu-300_firmware | * | ≤1.00_b07 |
| inaba | ac-wapu-300 | * | any |
| inaba | ac-wapum-300_firmware | * | ≤1.00_b07 |
| inaba | ac-wapum-300 | * | any |
| inaba | ac-wapum-300-p_firmware | * | ≤1.00_b07 |
| inaba | ac-wapum-300-p | * | any |
| inaba | ac-wapu-300-p_firmware | * | ≤1.00_b07 |
| inaba | ac-wapu-300-p | * | any |
References 2
- jvn.jp https://jvn.jp/en/jp/JVN28412757/
- inaba.co.jp https://www.inaba.co.jp/abaniact/news/Wi-Fi_AP_UNIT%E3%81%AB%E3%81%8A%E3%81%91%E3%82%8B%E8%A4%87%E6%95%B0%E3%81%AE%E8%84%86%E5%BC%B1%E6%80%A7%E3%81%AB%E3%81%A4%E3%81%84%E3%81%A6.pdf
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.