An issue was discovered on HMS Anybus X-Gateway AB7832-F 3 devices. The gateway exposes a web interface on port 80. An unauthenticated GET request to a specific URL triggers the reboot of the Anybus gateway (or at least most of its modules). An attacker can use this feature to carry out a denial of service attack by continuously sending GET requests to that URL.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-06-26T00:00:00
Updated: 2024-08-01T23:13:07.259Z
Reserved: 2024-01-22T00:00:00
Link: CVE-2024-23766
Vulnrichment
Updated: 2024-06-27T19:00:11.169Z
NVD
Status : Awaiting Analysis
Published: 2024-06-26T21:15:12.977
Modified: 2024-07-03T01:48:06.303
Link: CVE-2024-23766
Redhat
No data.