Multilaser Industrial S.A. — 74:58:89 (MA-L)

Multilaser Industrial S.A. holds the IEEE MA-L block 74:58:89, registered to its facility at Rua Josefa Gomes de Souza, 382, Extrema, Minas Gerais, Brazil (37640-000). Multilaser — corporately Grupo Multilaser S.A., trading under the "Multi" brand — is a Brazilian consumer-electronics manufacturer founded in 1987, publicly listed on the B3 exchange, with manufacturing in Extrema (Minas Gerais) and Manaus (Amazonas) and over 4,300 employees. The 74:58:89 prefix appears predominantly on the company's home/SOHO networking line: low-cost 2.4 GHz Wi-Fi routers and repeaters sold into the Brazilian market, alongside a broad accessories catalog (USB peripherals, tablets, smartphones, notebooks, audio/video gear, small appliances, and smart-home/IoT devices). The networking products are the OUI's most security-relevant surface. In February 2024, three access-control bypass vulnerabilities (CVE-2023-38944, CVE-2023-38945, CVE-2023-38946) were disclosed in the web management interface of the RE160, RE160V, and RE163V repeater/routers — enabling unauthenticated DNS modification, credential retrieval, routing-table changes, and remote-access enablement. RE160V and RE163V were patched at firmware V12.03.01.12 and later, while the RE160 was declared end-of-life with no patch planned. Multilaser's ISP-grade "Multilaser PRO" line (a ZTE partnership begun in 2017) ships OLTs, ONUs, and managed switches that may carry ZTE OUI prefixes rather than 74:58:89. As with all IEEE registrations, no assignment date is published — third-party tools that show "2022-06-09" are surfacing a database artifact, not an IEEE fact.

IEEE assignment

74:58:89 → Multilaser Industrial S.A., registered Extrema, Minas Gerais, BR [Confirmed] — IEEE MA-L (enrichment/registries/oui.csv, line 499)

Registry / block size

MA-L (24-bit OUI; ~16.7M addresses); 1 prefix; no MA-M (mam.csv) or MA-S (oui36.csv) assignments under this name [Confirmed] — enrichment/registries/oui.csv, mam.csv, oui36.csv. NOTE: IEEE's public OUI data publishes NO assignment/registration date (oui.csv columns are only Registry, Assignment, Organization Name, Organization Address); the "2022-06-09" shown by third-party tools (maclookup.app) is a database artifact, not an IEEE fact.

HQ / country

Rua Josefa Gomes de Souza, 382, Extrema, Minas Gerais, BR 37640-000 (registry address) [Confirmed] — IEEE MA-L (enrichment/registries/oui.csv)

Company

Multilaser Industrial S.A. (group: Grupo Multilaser S.A.; brand: "Multi") [Confirmed] — https://en.wikipedia.org/wiki/Multilaser, https://ri.multilaser.com.br/en/the-company/corporate-profile/

Company status

active; founded 1987; ~4,300+ employees; publicly listed on B3; manufacturing in Extrema/MG and Manaus/AM [Confirmed] — https://en.wikipedia.org/wiki/Multilaser, https://ri.multilaser.com.br/en/the-company/corporate-profile/

Device types

consumer Wi-Fi routers and repeaters (home/SOHO), USB accessories, tablets, smartphones, notebooks, audio/video peripherals, IoT/smart-home devices, small appliances [Confirmed] — https://en.wikipedia.org/wiki/Multilaser

Notable products

RE160 (300 Mbps 2.4 GHz wireless router/repeater, EoL), RE163 / RE163V (300 Mbps 2.4 GHz, 3-antenna variant) [Confirmed] — https://www.forcetech.com.br/products/roteador-multilaser-re160, https://www.castronaves.com.br/roteador-wireless-300-mbps--2-4-ghz--wps--wisp--wds--3-antenas-5dbi--3-portas-lan--bivolt-ref--re163---multilaser/p

Security note

CVE-2023-38944 / CVE-2023-38945 / CVE-2023-38946 (disclosed 2024-02-28) — access-control bypass in the web management interface. Affected: RE160 (38945, 38946), RE160V (38944, 38945), RE163V (38944, 38945). RE160V/RE163V patched at firmware V12.03.01.12+; RE160 declared EoL, no patch. [Confirmed] — https://seclists.org/fulldisclosure/2024/Mar/1, https://seclists.org/fulldisclosure/2024/Mar/2, https://www.tempest.com.br/sidechannel/en/access-control-vulnerabilities-found-within-multilaser-routers-web-management-interface

Sub-brand caveat

"Multilaser PRO" (ZTE partnership, est. 2017) ships ISP-grade OLTs, ONUs, and managed switches that may use ZTE OUI prefixes rather than 74:58:89 [Confirmed] — https://programadoresbrasil.com.br/en/2021/06/multilaser-pro-lancamento-equipamentos-rede-brasil/

Analyst note

a 74:58:89 globally-administered address identifies genuine Multilaser hardware (most often a budget 2.4 GHz router/repeater in the Brazilian market); the consumer networking line carries known CVEs (EoL RE160 unpatched), so OUI detection of these devices is a useful asset-management and risk signal — verify firmware on any matched device.