Lucene search
IcscertCVE-2023-5885HistoryNov 27, 2023 - 10:15 p.m.
CVE-2023-5885
2023-11-2722:15:08
CWE-35
CWE-22
icscert
web.nvd.nist.gov
18
cve-2023-5885
ffs colibri
remote access
file access
login credentials
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
40.0%
The discontinued FFS Colibri product allows a remote user to access files on the system including files containing login credentials for other users.
Affected configurations
Node
franklinfuelingcolibri_firmwareMatch-
franklinfuelingcolibriMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| franklinfueling | colibri_firmware | - | cpe:2.3:o:franklinfueling:colibri_firmware:-:*:*:*:*:*:*:* |
| franklinfueling | colibri | - | cpe:2.3:h:franklinfueling:colibri:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Colibri",
"vendor": "Franklin Electric Fueling Systems",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
}
]Related
nvd
nvd
CVE-2023-5885
2023-11-27 22:15:08
prion
prion
Code injection
2023-11-27 22:15:00
ics
ics
Franklin Electric Fueling Systems Colibri
2023-11-28 12:00:00
cvelist
cvelist
CVE-2023-5885 Franklin Electric Fueling Systems Colibri Path Traversal
2023-11-27 21:48:30
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
40.0%
Related for CVE-2023-5885