← Retour aux CVEs
CVE-2023-6928
CRITICAL9.8
Description
EuroTel ETL3100 versions v01c01 and v01x37 does not limit the number of attempts to guess administrative credentials in remote password attacks to gain full control of the system.
Details CVE
Score CVSS v3.19.8
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie12/19/2023
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
eurotel:etl3100eurotel:etl3100_firmware
Faiblesses (CWE)
CWE-307CWE-307
References
https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-05(ics-cert@hq.dhs.gov)
https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-05(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.