OpenCVE

An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router components.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Milesight	Ur32 Ur32 Firmware Ur32l Ur32l Firmware Ur35 Ur35 Firmware Ur41 Ur41 Firmware Ur51 Ur52 Ur55 Ur5x Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:h:milesight:ur51:-:::::::*
	cpe:2.3:h:milesight:ur52:-:::::::*
	cpe:2.3:h:milesight:ur55:-:::::::*

cpe:2.3:o:milesight:ur5x_firmware:*:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:h:milesight:ur32l:-:*:*:*:*:*:*:*

cpe:2.3:o:milesight:ur32l_firmware:*:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:h:milesight:ur32:-:*:*:*:*:*:*:*

cpe:2.3:o:milesight:ur32_firmware:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:h:milesight:ur35:-:*:*:*:*:*:*:*

cpe:2.3:o:milesight:ur35_firmware:*:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:milesight:ur41_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:milesight:ur41:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://milesight.com
http://packetstormsecurity.com/files/176988/Milesight-UR5X-UR32L-UR32-UR35-UR41-Credential-Leakage.html
http://ur5x.com
https://github.com/win3zz/CVE-2023-43261
https://medium.com/%40win3zz/inside-the-router-how-i-accessed-industrial-routers-and-reported-the-flaws-29c34213dfdf
https://support.milesight-iot.com/support/home

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-10-04T00:00:00

Updated: 2024-08-02T19:37:23.355Z

Reserved: 2023-09-18T00:00:00

Link: CVE-2023-43261

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-10-04T12:15:10.627

Modified: 2024-02-05T17:15:08.780

Link: CVE-2023-43261

Redhat

No data.

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:milesight:ur51:-:*:*:*:*:*:*:*", "matchCriteriaId": "9A5538BB-43CB-461F-9DA3-11F2F147F233", "vulnerable": false}, {"criteria": "cpe:2.3:h:milesight:ur52:-:*:*:*:*:*:*:*", "matchCriteriaId": "22242E4A-9719-4EB1-BB92-2AB606F323A1", "vulnerable": false}, {"criteria": "cpe:2.3:h:milesight:ur55:-:*:*:*:*:*:*:*", "matchCriteriaId": "BFD82DC3-E1E6-4073-8160-03FCADD9151E", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:milesight:ur5x_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F0915F1C-87D1-4375-9FBC-45C38EBAB645", "versionEndExcluding": "35.3.0.7", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:milesight:ur32l:-:*:*:*:*:*:*:*", "matchCriteriaId": "224B5936-7A7A-48E7-B0F3-754B74E4BF2D", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:milesight:ur32l_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E538CE7E-1300-40FD-B99F-BDBFF104FB55", "versionEndExcluding": "35.3.0.7", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:milesight:ur32:-:*:*:*:*:*:*:*", "matchCriteriaId": "080EADC9-FFA7-4789-8A88-FD3F484EDC42", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:milesight:ur32_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "38B4812C-F6AE-4E05-BF80-41DEE6DB3171", "versionEndExcluding": "35.3.0.7", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:milesight:ur35:-:*:*:*:*:*:*:*", "matchCriteriaId": "616ACA1E-D93D-4A07-AEE0-37C2AE35A326", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:milesight:ur35_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8FE72087-C99B-4108-ADA7-1B7FA476E7C1", "versionEndExcluding": "35.3.0.7", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:milesight:ur41_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E00FF8AD-4E24-4154-BA7B-99867515AB80", "versionEndExcluding": "35.3.0.7", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:milesight:ur41:-:*:*:*:*:*:*:*", "matchCriteriaId": "7D8BC494-6640-47F0-8F58-AB8118C07329", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router components."}, {"lang": "es", "value": "Una divulgaci\u00f3n de informaci\u00f3n en Milesight UR5X, UR32L, UR32, UR35, UR41 anterior a v35.3.0.7 permite a los atacantes acceder a componentes confidenciales del router."}], "id": "CVE-2023-43261", "lastModified": "2024-02-05T17:15:08.780", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-10-04T12:15:10.627", "references": [{"source": "cve@mitre.org", "tags": ["Product"], "url": "http://milesight.com"}, {"source": "cve@mitre.org", "url": "http://packetstormsecurity.com/files/176988/Milesight-UR5X-UR32L-UR32-UR35-UR41-Credential-Leakage.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Not Applicable"], "url": "http://ur5x.com"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/win3zz/CVE-2023-43261"}, {"source": "cve@mitre.org", "url": "https://medium.com/%40win3zz/inside-the-router-how-i-accessed-industrial-routers-and-reported-the-flaws-29c34213dfdf"}, {"source": "cve@mitre.org", "tags": ["Product"], "url": "https://support.milesight-iot.com/support/home"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-532"}], "source": "nvd@nist.gov", "type": "Primary"}]}