TROYANOSYVIRUS
Voltar para CVEs

CVE-2023-3261

HIGH
7.5

Descricao

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerability in the librta.so.0.0.0 library.Successful exploitation could cause denial of service or unexpected behavior with respect to all interactions relying on the targeted vulnerable binary, including the ability to log in via the web server.

Detalhes CVE

Pontuacao CVSS v3.17.5
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado8/14/2023
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0

Produtos afetados

cyberpower:powerpanel_serverdataprobe:iboot-pdu4-c20dataprobe:iboot-pdu4-c20_firmwaredataprobe:iboot-pdu4-n20dataprobe:iboot-pdu4-n20_firmwaredataprobe:iboot-pdu4a-c10dataprobe:iboot-pdu4a-c10_firmwaredataprobe:iboot-pdu4a-c20dataprobe:iboot-pdu4a-c20_firmwaredataprobe:iboot-pdu4a-n15dataprobe:iboot-pdu4a-n15_firmwaredataprobe:iboot-pdu4a-n20dataprobe:iboot-pdu4a-n20_firmwaredataprobe:iboot-pdu4sa-c10dataprobe:iboot-pdu4sa-c10_firmwaredataprobe:iboot-pdu4sa-c20dataprobe:iboot-pdu4sa-c20_firmwaredataprobe:iboot-pdu4sa-n15dataprobe:iboot-pdu4sa-n15_firmwaredataprobe:iboot-pdu4sa-n20dataprobe:iboot-pdu4sa-n20_firmwaredataprobe:iboot-pdu8a-2c10dataprobe:iboot-pdu8a-2c10_firmwaredataprobe:iboot-pdu8a-2c20dataprobe:iboot-pdu8a-2c20_firmwaredataprobe:iboot-pdu8a-2n15dataprobe:iboot-pdu8a-2n15_firmwaredataprobe:iboot-pdu8a-2n20dataprobe:iboot-pdu8a-2n20_firmwaredataprobe:iboot-pdu8a-c10dataprobe:iboot-pdu8a-c10_firmwaredataprobe:iboot-pdu8a-c20dataprobe:iboot-pdu8a-c20_firmwaredataprobe:iboot-pdu8a-n15dataprobe:iboot-pdu8a-n15_firmwaredataprobe:iboot-pdu8a-n20dataprobe:iboot-pdu8a-n20_firmwaredataprobe:iboot-pdu8sa-2n15dataprobe:iboot-pdu8sa-2n15_firmwaredataprobe:iboot-pdu8sa-c10dataprobe:iboot-pdu8sa-c10_firmwaredataprobe:iboot-pdu8sa-n15dataprobe:iboot-pdu8sa-n15_firmwaredataprobe:iboot-pdu8sa-n20dataprobe:iboot-pdu8sa-n20_firmware

Fraquezas (CWE)

CWE-119CWE-78

Referencias

https://www.trellix.com/en-us/about/newsroom/stories/research/the-threat-lurking-in-data-centers.html(trellixpsirt@trellix.com)
https://www.trellix.com/en-us/about/newsroom/stories/research/the-threat-lurking-in-data-centers.html(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.