{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-37220", "assignerOrgId": "a57ee1ae-c9c1-4f40-aa7b-cf10760fde3f", "state": "PUBLISHED", "assignerShortName": "INCD", "dateReserved": "2023-06-28T20:35:37.792Z", "datePublished": "2023-09-03T13:47:05.388Z", "dateUpdated": "2024-08-02T17:09:34.169Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Terminals", "vendor": "Synel ", "versions": [{"lessThan": "Upgrade to version 3015.1", "status": "affected", "version": "All versions", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Elad Ernst"}], "datePublic": "2023-09-03T13:42:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">Synel Terminals - CWE-494: Download of Code Without Integrity Check</span>\n\n"}], "value": "\nSynel Terminals - CWE-494: Download of Code Without Integrity Check\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-494", "description": "CWE-494 Download of Code Without Integrity Check", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "a57ee1ae-c9c1-4f40-aa7b-cf10760fde3f", "shortName": "INCD", "dateUpdated": "2023-09-03T13:47:05.388Z"}, "references": [{"url": "https://www.gov.il/en/Departments/faq/cve_advisories"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">Upgrade to version 3015.1</span>\n\n<br>"}], "value": "\nUpgrade to version 3015.1\n\n\n"}], "source": {"advisory": "ILVN-2023-0122", "discovery": "UNKNOWN"}, "title": "Synel Terminals - CWE-494: Download of Code Without Integrity Check", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T17:09:34.169Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.gov.il/en/Departments/faq/cve_advisories", "tags": ["x_transferred"]}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:synergy\\/a:-:*:*:*:*:*:*:*", "matchCriteriaId": "9CEB5432-74EB-4A98-AA18-897CABE4AF26", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:synergy\\/a_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7C3431BE-8E85-40A8-91D9-A3C03C81BF7A", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:synergy_touch:-:*:*:*:*:*:*:*", "matchCriteriaId": "8ADA2E81-0753-44AB-AC4F-6A9A6EE87462", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:synergy_touch_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C883E9CF-C77E-4E78-B138-C557D69B583F", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:synergy_10:-:*:*:*:*:*:*:*", "matchCriteriaId": "4E30ED62-C10D-4752-8404-BCA4041CA751", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:synergy_10_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D2658E86-1253-4D31-819C-4BD3A156FCD2", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:synergy_5:-:*:*:*:*:*:*:*", "matchCriteriaId": "EA328B75-2CAA-4871-8A20-245916DC6166", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:synergy_5_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "888282C2-093E-4A21-87F1-CFF12E2A9576", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-910:-:*:*:*:*:*:*:*", "matchCriteriaId": "24057D19-A18A-4E61-8FCD-A15A8D265A2E", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-910_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BE281DA3-A762-4FB7-B12F-7BA67DE32926", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:synergy\\/x:-:*:*:*:*:*:*:*", "matchCriteriaId": "0BBCCEE9-20C5-4370-9D41-62C0B48863BF", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:synergy\\/x_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D52D69C8-55F7-4859-9329-165CDB166660", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy110_face:-:*:*:*:*:*:*:*", "matchCriteriaId": "CBD33F72-88A6-4B49-9774-740CF8AEFE80", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy110_face_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D597621A-1DA4-477F-BDEC-4044E0CB850D", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:synel:bioentry-w2:-:*:*:*:*:*:*:*", "matchCriteriaId": "D5D4DEC1-E370-43FD-A1C1-26DE3DE1ACFA", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synel:bioentry-w2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D80201F0-07BF-4223-A783-9602B248B6DB", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:biolite-n2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B2DACD2A-973E-48D4-8125-C03AB69F6FA0", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:biolite-n2:-:*:*:*:*:*:*:*", "matchCriteriaId": "1DE274DA-B3DE-450D-B658-674FECD8E8CC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:bioentry_p2_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B1039971-A3F9-4D30-B0DC-1BC10CEADFCC", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:bioentry_p2:-:*:*:*:*:*:*:*", "matchCriteriaId": "6DECFB45-A5E5-40D9-8B4F-3E21745E2E48", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-711_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DC588814-31C4-436A-ACF4-469BC3644BB8", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-711:-:*:*:*:*:*:*:*", "matchCriteriaId": "578030EB-BE02-404C-B5CC-9AC852BBD927", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-715_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CEFE13E7-D150-472D-B499-92CADAD3FCE8", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-715:-:*:*:*:*:*:*:*", "matchCriteriaId": "0C967103-DD12-469C-BF9A-7E6BE34BE6B8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-751_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "69B64275-4D2E-4F1A-B161-1B6DC2EAC5C9", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-751:-:*:*:*:*:*:*:*", "matchCriteriaId": "2FAE8AD6-3D27-44EA-9DF5-41F8B0A74304", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-755_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FBCD98CD-CF12-435E-849F-C1CAF3ACEC8A", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-755:-:*:*:*:*:*:*:*", "matchCriteriaId": "D0DA4BD0-7918-4215-AC4F-D7EB4421ECD8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-777_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6F49A59F-DA31-440D-B8ED-9B85E1F7CAF1", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-777:-:*:*:*:*:*:*:*", "matchCriteriaId": "24A9A9AE-5A7F-4CCB-B4E7-2E017E5C1D73", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-785_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C9B5E591-3701-406E-9586-1BDF0261019B", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-785:-:*:*:*:*:*:*:*", "matchCriteriaId": "DCAEFF5E-1E8F-470D-A245-40C8D1599E20", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-765_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "91C402A4-80BC-4D5A-96BA-EC12F9DB53AE", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-765:-:*:*:*:*:*:*:*", "matchCriteriaId": "96141CF0-78B4-4377-826B-641AF2ED29EC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-7500_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "70544D8B-A6AB-4BCA-B548-A2CAD88493B1", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-7500:-:*:*:*:*:*:*:*", "matchCriteriaId": "01B54814-8CCC-44E2-A21D-4F8E34667292", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-745_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "25FE0B6C-2F3D-4390-AAC7-2DE37A2FE44D", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-745:-:*:*:*:*:*:*:*", "matchCriteriaId": "CAFFB4FB-8C79-40BC-B211-DD025A20FB0F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:sy-780_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BA44D700-855C-4B6C-8664-308F09DA4986", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:sy-780:-:*:*:*:*:*:*:*", "matchCriteriaId": "6FDF3F5D-DF58-4F92-B825-AEB9BF0B4FCF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synel:synergy_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8D3E71AC-D176-4783-AFD6-4A447F04333B", "versionEndExcluding": "3015.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synel:synergy:-:*:*:*:*:*:*:*", "matchCriteriaId": "AD9C87F1-50E6-4A22-8599-24D9C3804F59", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "\nSynel Terminals - CWE-494: Download of Code Without Integrity Check\n\n"}, {"lang": "es", "value": "Synel Terminals - CWE-494: Descarga de c\u00f3digo sin comprobaci\u00f3n de integridad. "}], "id": "CVE-2023-37220", "lastModified": "2023-09-07T17:44:17.280", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9, "source": "cna@cyber.gov.il", "type": "Secondary"}]}, "published": "2023-09-03T14:15:41.587", "references": [{"source": "cna@cyber.gov.il", "tags": ["Third Party Advisory"], "url": "https://www.gov.il/en/Departments/faq/cve_advisories"}], "sourceIdentifier": "cna@cyber.gov.il", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-494"}], "source": "cna@cyber.gov.il", "type": "Primary"}]}

{}