VDE-2024-009
Vulnerability from csaf_welotecgmbh - Published: 2024-04-09 08:00 - Updated: 2025-05-14 12:28Summary
Welotec: Two vulnerabilities in TK500v1 router series
Notes
Summary: Welotec has closed two vulnerabilities in the TK500v1 router series and advises to update the routers to firmware version r5542 or later. An exploitation of the vulnerabilities can allow an attacker to manipulate the device.
Remediation: Update the product to firmware v2.3.0.r5542 or later.
9.8 (Critical)
Mitigation
Update the product to firmware v2.3.0.r5542 or later.
8.8 (High)
Mitigation
Update the product to firmware v2.3.0.r5542 or later.
References
Acknowledgments
CERT@VDE
certvde.com
BSI
www.bsi.bund.de/
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
},
{
"organization": "BSI",
"summary": "reporting",
"urls": [
"https://www.bsi.bund.de/"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Welotec has closed two vulnerabilities in the TK500v1 router series and advises to update the routers to firmware version r5542 or later. An exploitation of the vulnerabilities can allow an attacker to manipulate the device.",
"title": "Summary"
},
{
"category": "description",
"text": "Update the product to firmware v2.3.0.r5542 or later.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@welotec.com",
"name": "Welotec GmbH",
"namespace": "https://welotec.com"
},
"references": [
{
"category": "external",
"summary": "Welotec Coordinated Vulnerability Disclosure Policy.",
"url": "https://www.welotec.com/coordinated-vulnerability-disclosure-policy/"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for Welotec products.",
"url": "https://certvde.com/en/advisories/vendor/welotec/"
},
{
"category": "self",
"summary": "VDE-2024-009: Welotec: Two vulnerabilities in TK500v1 router series - HTML",
"url": "https://certvde.com/en/advisories/VDE-2024-009/"
},
{
"category": "self",
"summary": "VDE-2024-009: Welotec: Two vulnerabilities in TK500v1 router series - CSAF",
"url": "https://welotec.csaf-tp.certvde.com/.well-known/csaf/white/2024/vde-2024-009.json"
}
],
"title": "Welotec: Two vulnerabilities in TK500v1 router series",
"tracking": {
"aliases": [
"VDE-2024-009"
],
"current_release_date": "2025-05-14T12:28:19.000Z",
"generator": {
"date": "2024-06-04T14:36:24.058Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.4"
}
},
"id": "VDE-2024-009",
"initial_release_date": "2024-04-09T08:00:00.000Z",
"revision_history": [
{
"date": "2023-06-07T10:00:00.000Z",
"number": "1",
"summary": "initial revision"
},
{
"date": "2024-06-04T10:00:00.000Z",
"number": "2",
"summary": "Minor typo changes.\nReorder Products and Branches.\nDuplicate remediation from document notes to the vulnerabilities."
},
{
"date": "2024-11-06T11:27:01.000Z",
"number": "3",
"summary": "Fix: correct certvde domain, added self-reference"
},
{
"date": "2025-05-14T12:28:19.000Z",
"number": "4",
"summary": "Fix: firmware category, added distribution, version space"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "TK525L",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525L",
"product_id": "CSAFPID-1101",
"product_identification_helper": {
"model_numbers": [
"6912TK525L00"
]
}
}
},
{
"category": "product_name",
"name": "TK515L",
"product": {
"name": "Welotec Hardware Router TK500v1 TK515L",
"product_id": "CSAFPID-1102",
"product_identification_helper": {
"model_numbers": [
"6912TK515L00"
]
}
}
},
{
"category": "product_name",
"name": "TK525L Set",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525L Set",
"product_id": "CSAFPID-1103",
"product_identification_helper": {
"model_numbers": [
"6912TK525L0S"
]
}
}
},
{
"category": "product_name",
"name": "TK525L-W Set",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525L-W Set",
"product_id": "CSAFPID-1104",
"product_identification_helper": {
"model_numbers": [
"6912TK525LS"
]
}
}
},
{
"category": "product_name",
"name": "TK525L-W",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525L-W",
"product_id": "CSAFPID-1105",
"product_identification_helper": {
"model_numbers": [
"6912TK525LW"
]
}
}
},
{
"category": "product_name",
"name": "TK525U Set",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525U Set",
"product_id": "CSAFPID-1106",
"product_identification_helper": {
"model_numbers": [
"6912TK525U0S"
]
}
}
},
{
"category": "product_name",
"name": "TK525U",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525U",
"product_id": "CSAFPID-1107",
"product_identification_helper": {
"model_numbers": [
"6912TK525U00"
]
}
}
},
{
"category": "product_name",
"name": "TK525W Set",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525W Set",
"product_id": "CSAFPID-1108",
"product_identification_helper": {
"model_numbers": [
"6912TK525W0S"
]
}
}
},
{
"category": "product_name",
"name": "TK525W",
"product": {
"name": "Welotec Hardware Router TK500v1 TK525W",
"product_id": "CSAFPID-1109",
"product_identification_helper": {
"model_numbers": [
"6912TK525W00"
]
}
}
},
{
"category": "product_name",
"name": "TK515L-W Set",
"product": {
"name": "Welotec Hardware Router TK500v1 TK515L-W Set",
"product_id": "CSAFPID-1110",
"product_identification_helper": {
"model_numbers": [
"6912TK515WS"
]
}
}
},
{
"category": "product_name",
"name": "TK535L1 Set",
"product": {
"name": "Welotec Hardware Router TK500v1 TK535L1 Set",
"product_id": "CSAFPID-1111",
"product_identification_helper": {
"model_numbers": [
"6912TK535L0S"
]
}
}
},
{
"category": "product_name",
"name": "TK515L-W",
"product": {
"name": "Welotec Hardware Router TK500v1 TK515L-W",
"product_id": "CSAFPID-1112",
"product_identification_helper": {
"model_numbers": [
"6912TK515WS"
]
}
}
},
{
"category": "product_name",
"name": "TK535L1",
"product": {
"name": "Welotec Hardware Router TK500v1 TK535L1",
"product_id": "CSAFPID-1113",
"product_identification_helper": {
"model_numbers": [
"6912TK535L00"
]
}
}
},
{
"category": "product_name",
"name": "TK515L Set",
"product": {
"name": "Welotec Hardware Router TK500v1 TK515L Set",
"product_id": "CSAFPID-1114",
"product_identification_helper": {
"model_numbers": [
"6912TK515L0S"
]
}
}
}
],
"category": "product_family",
"name": "TK500v1"
}
],
"category": "product_family",
"name": "Router"
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cv2.3.0.r5542",
"product": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542",
"product_id": "CSAFPID-2101"
}
},
{
"category": "product_version",
"name": "v2.3.0.r5542",
"product": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542",
"product_id": "CSAFPID-2201"
}
}
],
"category": "product_family",
"name": "TK500v1"
}
],
"category": "product_family",
"name": "Router"
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Welotec"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-3101",
"CSAFPID-3102",
"CSAFPID-3103",
"CSAFPID-3104",
"CSAFPID-3105",
"CSAFPID-3106",
"CSAFPID-3107",
"CSAFPID-3108",
"CSAFPID-3109",
"CSAFPID-3110",
"CSAFPID-3111",
"CSAFPID-3112",
"CSAFPID-3113",
"CSAFPID-3114"
],
"summary": "Affected products."
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-3201",
"CSAFPID-3202",
"CSAFPID-3203",
"CSAFPID-3204",
"CSAFPID-3205",
"CSAFPID-3206",
"CSAFPID-3207",
"CSAFPID-3208",
"CSAFPID-3209",
"CSAFPID-3210",
"CSAFPID-3211",
"CSAFPID-3212",
"CSAFPID-3213",
"CSAFPID-3214"
],
"summary": "Fixed products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L",
"product_id": "CSAFPID-3101"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1101"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L",
"product_id": "CSAFPID-3102"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1102"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L Set",
"product_id": "CSAFPID-3103"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1103"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L-W Set",
"product_id": "CSAFPID-3104"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1104"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L-W",
"product_id": "CSAFPID-3105"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1105"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525U Set",
"product_id": "CSAFPID-3106"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1106"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525U",
"product_id": "CSAFPID-3107"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1107"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525W Set",
"product_id": "CSAFPID-3108"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1108"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525W",
"product_id": "CSAFPID-3109"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1109"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L-W Set",
"product_id": "CSAFPID-3110"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1110"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK535L1 Set",
"product_id": "CSAFPID-3111"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1111"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L-W",
"product_id": "CSAFPID-3112"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1112"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK535L1",
"product_id": "CSAFPID-3113"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1113"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 \u003cv2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L Set",
"product_id": "CSAFPID-3114"
},
"product_reference": "CSAFPID-2101",
"relates_to_product_reference": "CSAFPID-1114"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L",
"product_id": "CSAFPID-3201"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1101"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L",
"product_id": "CSAFPID-3202"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1102"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L Set",
"product_id": "CSAFPID-3203"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1103"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L-W Set",
"product_id": "CSAFPID-3204"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1104"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525L-W",
"product_id": "CSAFPID-3205"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1105"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525U Set",
"product_id": "CSAFPID-3206"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1106"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525U",
"product_id": "CSAFPID-3207"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1107"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525W Set",
"product_id": "CSAFPID-3208"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1108"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK525W",
"product_id": "CSAFPID-3209"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1109"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L-W Set",
"product_id": "CSAFPID-3210"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1110"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK535L1 Set",
"product_id": "CSAFPID-3211"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1111"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L-W",
"product_id": "CSAFPID-3212"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1112"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK535L1",
"product_id": "CSAFPID-3213"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1113"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Welotec Firmware Router TK500v1 v2.3.0.r5542 installed on Welotec Hardware Router TK500v1 TK515L Set",
"product_id": "CSAFPID-3214"
},
"product_reference": "CSAFPID-2201",
"relates_to_product_reference": "CSAFPID-1114"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-1083",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "summary",
"text": "An unauthenticated remote attacker who is aware of a\u00a0MQTT topic name can send and receive messages, including GET/SET configuration commands, reboot commands and firmware updates.\n",
"title": "Summary"
}
],
"product_status": {
"fixed": [
"CSAFPID-3201",
"CSAFPID-3202",
"CSAFPID-3203",
"CSAFPID-3204",
"CSAFPID-3205",
"CSAFPID-3206",
"CSAFPID-3207",
"CSAFPID-3208",
"CSAFPID-3209",
"CSAFPID-3210",
"CSAFPID-3211",
"CSAFPID-3212",
"CSAFPID-3213",
"CSAFPID-3214"
],
"known_affected": [
"CSAFPID-3101",
"CSAFPID-3102",
"CSAFPID-3103",
"CSAFPID-3104",
"CSAFPID-3105",
"CSAFPID-3106",
"CSAFPID-3107",
"CSAFPID-3108",
"CSAFPID-3109",
"CSAFPID-3110",
"CSAFPID-3111",
"CSAFPID-3112",
"CSAFPID-3113",
"CSAFPID-3114"
]
},
"release_date": "2024-04-09T08:25:46.915Z",
"remediations": [
{
"category": "mitigation",
"date": "2023-06-07T10:00:00.000Z",
"details": "Update the product to firmware v2.3.0.r5542 or later.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-3101",
"CSAFPID-3102",
"CSAFPID-3103",
"CSAFPID-3104",
"CSAFPID-3105",
"CSAFPID-3106",
"CSAFPID-3107",
"CSAFPID-3108",
"CSAFPID-3109",
"CSAFPID-3110",
"CSAFPID-3111",
"CSAFPID-3112",
"CSAFPID-3113",
"CSAFPID-3114"
]
},
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 0,
"baseSeverity": "NONE",
"confidentialityImpact": "NONE",
"environmentalScore": 0,
"environmentalSeverity": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 0,
"temporalSeverity": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-3201",
"CSAFPID-3202",
"CSAFPID-3203",
"CSAFPID-3204",
"CSAFPID-3205",
"CSAFPID-3206",
"CSAFPID-3207",
"CSAFPID-3208",
"CSAFPID-3209",
"CSAFPID-3210",
"CSAFPID-3211",
"CSAFPID-3212",
"CSAFPID-3213",
"CSAFPID-3214"
]
}
],
"title": "CVE-2023-1083"
},
{
"cve": "CVE-2023-1082",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "An remote attacker with low privileges can perform a command injection which can lead to root access.",
"title": "Summary"
}
],
"product_status": {
"fixed": [
"CSAFPID-3201",
"CSAFPID-3202",
"CSAFPID-3203",
"CSAFPID-3204",
"CSAFPID-3205",
"CSAFPID-3206",
"CSAFPID-3207",
"CSAFPID-3208",
"CSAFPID-3209",
"CSAFPID-3210",
"CSAFPID-3211",
"CSAFPID-3212",
"CSAFPID-3213",
"CSAFPID-3214"
],
"known_affected": [
"CSAFPID-3101",
"CSAFPID-3102",
"CSAFPID-3103",
"CSAFPID-3104",
"CSAFPID-3105",
"CSAFPID-3106",
"CSAFPID-3107",
"CSAFPID-3108",
"CSAFPID-3109",
"CSAFPID-3110",
"CSAFPID-3111",
"CSAFPID-3112",
"CSAFPID-3113",
"CSAFPID-3114"
]
},
"release_date": "2024-04-09T08:25:34.716Z",
"remediations": [
{
"category": "mitigation",
"date": "2023-06-07T10:00:00.000Z",
"details": "Update the product to firmware v2.3.0.r5542 or later.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-3101",
"CSAFPID-3102",
"CSAFPID-3103",
"CSAFPID-3104",
"CSAFPID-3105",
"CSAFPID-3106",
"CSAFPID-3107",
"CSAFPID-3108",
"CSAFPID-3109",
"CSAFPID-3110",
"CSAFPID-3111",
"CSAFPID-3112",
"CSAFPID-3113",
"CSAFPID-3114"
]
},
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 0,
"baseSeverity": "NONE",
"confidentialityImpact": "NONE",
"environmentalScore": 0,
"environmentalSeverity": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 0,
"temporalSeverity": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-3201",
"CSAFPID-3202",
"CSAFPID-3203",
"CSAFPID-3204",
"CSAFPID-3205",
"CSAFPID-3206",
"CSAFPID-3207",
"CSAFPID-3208",
"CSAFPID-3209",
"CSAFPID-3210",
"CSAFPID-3211",
"CSAFPID-3212",
"CSAFPID-3213",
"CSAFPID-3214"
]
}
],
"title": "CVE-2023-1082"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…