High severity7.8NVD Advisory· Published Jul 5, 2023· Updated Jun 17, 2026
CVE-2023-36623
CVE-2023-36623
Description
The root password of the Loxone Miniserver Go Gen.2 before 14.2 is calculated using hard-coded secrets and the MAC address. This allows a local user to calculate the root password and escalate privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Loxone/Miniserver Go Gen.2description
- Range: <14.2
Patches
Vulnerability mechanics
References
2- www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2023-013.txtnvdExploitThird Party Advisory
- www.syss.de/pentest-blog/root-zugang-zu-smarthome-server-loxone-miniserver-go-gen-2-syss-2023-004/-012/-013nvdThird Party Advisory
News mentions
0No linked articles in our index yet.