VYPR
← All advisories
Unrated severityNVD Advisory· Published May 10, 2023· Updated Jan 28, 2025

CVE-2023-23906

CVE-2023-23906

Description

Missing authentication for critical function exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0 and earlier, which may allow a remote unauthenticated attacker to execute some critical functions without authentication, e.g., rebooting the product.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Missing authentication for critical functions in SkyBridge MB-A100/110 firmware ≤4.2.0 allows remote unauthenticated attackers to reboot the device.

Vulnerability

SkyBridge MB-A100/110 firmware versions 4.2.0 and earlier lack authentication for critical functions [2]. This allows remote attackers to execute functions that should require authentication, such as rebooting the device.

Exploitation

An unauthenticated remote attacker can send crafted requests to the device's management interface to trigger critical functions without any credentials.

Impact

Successful exploitation enables the attacker to reboot the product, causing a denial of service. Other critical functions may also be exposed, potentially leading to further compromise.

Mitigation

The vendor has not disclosed a fixed version in the available references [2]. Users should check the official download page for firmware updates and apply the latest version if available.

References
  1. ダウンロード(MB-A100/110) | LTE/3G対応無線ルーター SkyBridge | セイコーソリューションズ

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.