Unrated severityNVD Advisory· Published Jun 28, 2023· Updated Dec 4, 2024
CVE-2023-2625
CVE-2023-2625
Description
A vulnerability exists that can be exploited by an authenticated client that is connected to the same network segment as the CoreTec 4, having any level of access VIEWER to ADMIN. To exploit the vulnerability the attacker can inject shell commands through a particular field of the web user interface that will be executed by the system.
Affected products
2- Range: TXpert Hub CoreTec 4 version 2.0.*
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.