Incorrect access control in the firewall management function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to alter local firewall settings of the device as if they were the administrator via HTTP POST request.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/setersora/pe6208 |
History
Tue, 20 Aug 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-284 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-20T14:55:32.873Z
Reserved:
Link: CVE-2023-43848
Vulnrichment
Updated: 2024-08-02T19:52:11.892Z
NVD
Status : Awaiting Analysis
Published: 2024-05-28T19:15:09.587
Modified: 2024-08-20T15:35:01.247
Link: CVE-2023-43848
Redhat
No data.