CVE-2023-23590

2023-01-1500:00:00

mitre

www.cve.org

mercedes-benz

xentry

retail data storage

denial of service

vulnerability

unauthenticated

api request

network-based

EPSS

0.002

Percentile

58.2%

JSON

Mercedes-Benz XENTRY Retail Data Storage 7.8.1 allows remote attackers to cause a denial of service (device restart) via an unauthenticated API request. The attacker must be on the same network as the device.

References

b2bconnect.mercedes-benz.com/gb/workshop-solutions/diagnosis/retail-data-storage

medium.com/%40windsormoreira/xentry-retail-data-storage-v7-8-1-denial-of-service-cve-2023-23590-60b65f5fa358

EPSS

0.002

Percentile

58.2%

JSON

Related for CVELIST:CVE-2023-23590