A CWE-494 Download of Code Without Integrity Check vulnerability exists that could allow
modified firmware to be uploaded when an authorized admin user begins a firmware update
procedure which could result in full control over the device.

Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 30 Sep 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: schneider

Published:

Updated: 2025-09-30T14:33:42.586Z

Reserved: 2023-11-07T10:54:44.542Z

Link: CVE-2023-5984

cve-icon Vulnrichment

Updated: 2024-08-02T08:14:25.140Z

cve-icon NVD

Status : Modified

Published: 2023-11-15T04:15:19.043

Modified: 2024-11-21T08:42:55.290

Link: CVE-2023-5984

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.