Under certain conditions, access to service libraries is granted to account they should not have access to.
History

Tue, 05 Nov 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Enel X
Enel X juicebox Pro3.0 22kw Cellular
CPEs cpe:2.3:a:enel_x:juicebox_pro3.0_22kw_cellular:*:*:*:*:*:*:*:*
Vendors & Products Enel X
Enel X juicebox Pro3.0 22kw Cellular
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 05 Nov 2024 15:45:00 +0000

Type Values Removed Values Added
Description Under certain conditions, access to service libraries is granted to account they should not have access to.
Title Incorrect file ownership of privileged service's libraries in Enel X JuiceBox
Weaknesses CWE-708
References
Metrics cvssV3_1

{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: ASRG

Published: 2024-11-05T15:24:43.416Z

Updated: 2024-11-05T18:58:24.529Z

Reserved: 2023-03-31T10:22:52.668Z

Link: CVE-2023-29122

cve-icon Vulnrichment

Updated: 2024-11-05T18:58:18.979Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-11-05T16:15:16.577

Modified: 2024-11-06T18:17:17.287

Link: CVE-2023-29122

cve-icon Redhat

No data.