TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2023-38523

MEDIUM
5.3

Beschreibung

The web interface on multiple Samsung Harman AMX N-Series devices allows directory listing for the /tmp/ directory, without authentication, exposing sensitive information such as the command history and screenshot of the file being processed. This affects N-Series N1115 Wallplate Video Encoder before 1.15.61, N-Series N1x22A Video Encoder/Decoder before 1.15.61, N-Series N1x33A Video Encoder/Decoder before 1.15.61, N-Series N1x33 Video Encoder/Decoder before 1.15.61, N-Series N2x35 Video Encoder/Decoder before 1.15.61, N-Series N2x35A Video Encoder/Decoder before 1.15.61, N-Series N2xx2 Video Encoder/Decoder before 1.15.61, N-Series N2xx2A Video Encoder/Decoder before 1.15.61, N-Series N3000 Video Encoder/Decoder before 2.12.105, and N-Series N4321 Audio Transceiver before 1.00.06.

CVE Details

CVSS v3.1 Bewertung5.3
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht7/20/2023
Zuletzt geandert11/21/2024
Quellenvd
Honeypot-Sichtungen0

Betroffene Produkte

samsung:fgn1115-wp-whsamsung:fgn1115-wp-wh_firmwaresamsung:fgn1122-cdsamsung:fgn1122-cd_firmwaresamsung:fgn1122-sasamsung:fgn1122-sa_firmwaresamsung:fgn1133-cdsamsung:fgn1133-cd_firmwaresamsung:fgn1133-sasamsung:fgn1133-sa_firmwaresamsung:fgn1133a-cdsamsung:fgn1133a-cd_firmwaresamsung:fgn1133a-sasamsung:fgn1133a-sa_firmwaresamsung:fgn1222-cdsamsung:fgn1222-cd_firmwaresamsung:fgn1222-sasamsung:fgn1222-sa_firmwaresamsung:fgn1233-cdsamsung:fgn1233-cd_firmwaresamsung:fgn1233-sasamsung:fgn1233-sa_firmwaresamsung:fgn1233a-cdsamsung:fgn1233a-cd_firmwaresamsung:fgn1233a-sasamsung:fgn1233a-sa_firmwaresamsung:fgn2122-cdsamsung:fgn2122-cd_firmwaresamsung:fgn2122-sasamsung:fgn2122-sa_firmwaresamsung:fgn2122a-cdsamsung:fgn2122a-cd_firmwaresamsung:fgn2122a-sasamsung:fgn2122a-sa_firmwaresamsung:fgn2135-cdsamsung:fgn2135-cd_firmwaresamsung:fgn2135-sasamsung:fgn2135-sa_firmwaresamsung:fgn2212-cdsamsung:fgn2212-cd_firmwaresamsung:fgn2212-sasamsung:fgn2212-sa_firmwaresamsung:fgn2222-cdsamsung:fgn2222-cd_firmwaresamsung:fgn2222-sasamsung:fgn2222-sa_firmwaresamsung:fgn2222a-cdsamsung:fgn2222a-cd_firmwaresamsung:fgn2222a-sasamsung:fgn2222a-sa_firmwaresamsung:fgn2235-cdsamsung:fgn2235-cd_firmwaresamsung:fgn2235-sasamsung:fgn2235-sa_firmwaresamsung:fgn3132a-csamsung:fgn3132a-c_firmwaresamsung:fgn3132a-sasamsung:fgn3132a-sa_firmwaresamsung:fgn3232a-csamsung:fgn3232a-c_firmwaresamsung:fgn3232a-sasamsung:fgn3232a-sa_firmwaresamsung:fgn4321-cdsamsung:fgn4321-cd_firmwaresamsung:fgn4321-sasamsung:fgn4321-sa_firmware

Schwachen (CWE)

CWE-306

Referenzen

https://help.harmanpro.com/n1115-svsi-firmware(cve@mitre.org)
https://help.harmanpro.com/n1x22a-updater(cve@mitre.org)
https://help.harmanpro.com/n1x33-updater(cve@mitre.org)
https://help.harmanpro.com/n1x33a-updater(cve@mitre.org)
https://help.harmanpro.com/n2x35-updater-hotfix(cve@mitre.org)
https://help.harmanpro.com/n2x35a-updater-hotfix(cve@mitre.org)
https://help.harmanpro.com/n2xx2-updater-hotfix(cve@mitre.org)
https://help.harmanpro.com/n2xx2a-updater(cve@mitre.org)
https://help.harmanpro.com/n3k-updater-hotfix(cve@mitre.org)
https://help.harmanpro.com/svsi-n4321-firmware(cve@mitre.org)
https://wiki.notveg.ninja/blog/CVE-2023-38523/(cve@mitre.org)
https://help.harmanpro.com/n1115-svsi-firmware(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n1x22a-updater(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n1x33-updater(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n1x33a-updater(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n2x35-updater-hotfix(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n2x35a-updater-hotfix(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n2xx2-updater-hotfix(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n2xx2a-updater(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/n3k-updater-hotfix(af854a3a-2127-422b-91ae-364da2661108)
https://help.harmanpro.com/svsi-n4321-firmware(af854a3a-2127-422b-91ae-364da2661108)
https://wiki.notveg.ninja/blog/CVE-2023-38523/(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.