CVE-2023-28610

2023-03-2300:00:00

mitre

www.cve.org

cve-2023-28610

update process

omicron

stationguard

stationscout

firmware

remote attacker

root access

AI Score

9.7

Confidence

High

EPSS

0.003

Percentile

69.2%

JSON

The update process in OMICRON StationGuard and OMICRON StationScout before 2.21 can be exploited by providing a modified firmware update image. This allows a remote attacker to gain root access to the system.

References

www.omicronenergy.com/en/support/product-security/

www.omicronenergy.com/fileadmin/user_upload/website/files/product-security/osa-5.txt