Incorrect access control in the outlet control function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to control all the outlets as if they were the administrator via HTTP POST requests.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/setersora/pe6208 |
History
Fri, 23 Aug 2024 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-284 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-23T17:11:12.195Z
Reserved:
Link: CVE-2023-43847
Vulnrichment
Updated: 2024-08-02T19:52:11.842Z
NVD
Status : Awaiting Analysis
Published: 2024-05-28T19:15:09.523
Modified: 2024-08-23T17:35:00.470
Link: CVE-2023-43847
Redhat
No data.