Incorrect access control in firmware upgrade function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to submit a firmware image via HTTP POST requests. This may result in DoS or remote code execution.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/setersora/pe6208 |
History
Wed, 14 Aug 2024 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-284 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-14T19:33:19.358Z
Reserved:
Link: CVE-2023-43849
Vulnrichment
Updated: 2024-08-02T19:52:11.405Z
NVD
Status : Awaiting Analysis
Published: 2024-05-28T19:15:09.647
Modified: 2024-08-14T20:35:03.723
Link: CVE-2023-43849
Redhat
No data.