QwikSec

Security Database

CVE

CWE

Training

CVE-2023-53771

Published: Dec 9, 2025

Modified: Apr 7, 2026

PUBLISHED

Description

MiniDVBLinux 5.4 contains an authentication bypass vulnerability that allows remote attackers to change the root password without authentication. Attackers can send crafted POST requests to the system setup endpoint with modified SYSTEM_PASSWORD parameters to reset root credentials.

Vendor	Product	Versions
MiniDVBLinux	MiniDVBLinux Change Root Password PoC	affected `<=5.4`

Weaknesses (CWE)

References

ExploitDB-51094

exploit

Zero Science Lab Disclosure (ZSL-2022-5715)

third-party-advisory

Official Product Homepage

product

VulnCheck Advisory: MiniDVBLinux 5.4 Unauthenticated Root Password Change via System Setup

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.