{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-29T18:21:43.482","vulnerabilities":[{"cve":{"id":"CVE-2023-41926","sourceIdentifier":"cert@ncsc.nl","published":"2024-07-02T08:15:04.773","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The webserver utilizes basic authentication for its user login to the configuration interface. As encryption is disabled on port 80, it enables potential eavesdropping on user traffic, making it possible to intercept their credentials."},{"lang":"es","value":"El servidor web utiliza autenticación básica para que el usuario inicie sesión en la interfaz de configuración. Como el cifrado está deshabilitado en el puerto 80, permite posibles escuchas en el tráfico de los usuarios, lo que hace posible interceptar sus credenciales."}],"metrics":{"cvssMetricV31":[{"source":"cert@ncsc.nl","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"cert@ncsc.nl","type":"Secondary","description":[{"lang":"en","value":"CWE-522"}]}],"references":[{"url":"https://advisories.ncsc.nl/advisory?id=NCSC-2024-0273","source":"cert@ncsc.nl"},{"url":"https://advisories.ncsc.nl/advisory?id=NCSC-2024-0273","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}