Vulners
Lucene search
CVE-2023-34388 Improper authentication could lead to session hijacking
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | The vulnerability of the microprogrammed protection system for the SEL-451 phase-change order relay exists due to an unreliable authentication mechanism. This allows attackers to execute session hijacking attacks and bypass the authentication process. | 6 Dec 202300:00 | – | bdu_fstec |
 | CVE-2023-34388 | 21 Dec 202310:37 | – | circl |
 | Schweitzer Engineering Laboratories SEL-411L Authorization Issue Vulnerability | 30 Nov 202300:00 | – | cnnvd |
 | CVE-2023-34388 | 30 Nov 202316:54 | – | cve |
 | EUVD-2023-38468 | 3 Oct 202520:07 | – | euvd |
 | CVE-2023-34388 | 30 Nov 202317:15 | – | nvd |
 | CVE-2023-34388 | 30 Nov 202317:15 | – | osv |
 | Authentication flaw | 30 Nov 202317:15 | – | prion |
 | PT-2023-7441 · Schweitzer Engineering Laboratories · Sel-451 | 30 Nov 202300:00 | – | ptsecurity |
 | CVE-2023-34388 Improper authentication could lead to session hijacking | 30 Nov 202316:54 | – | vulnrichment |
10
[
{
"defaultStatus": "unaffected",
"product": "SEL-451",
"vendor": "Schweitzer Engineering Laboratories",
"versions": [
{
"lessThan": "R315-V4",
"status": "affected",
"version": "R315-V0",
"versionType": "custom"
},
{
"lessThan": "R316-V4",
"status": "affected",
"version": "R316-V0",
"versionType": "custom"
},
{
"lessThan": "R317-V4",
"status": "affected",
"version": "R317-V0",
"versionType": "custom"
},
{
"lessThan": "R318-V5",
"status": "affected",
"version": "R318-V0",
"versionType": "custom"
},
{
"lessThan": "R320-V3",
"status": "affected",
"version": "R320-V0",
"versionType": "custom"
},
{
"lessThan": "R321-V3",
"status": "affected",
"version": "R321-V0",
"versionType": "custom"
},
{
"lessThan": "R322-V3",
"status": "affected",
"version": "R322-V0",
"versionType": "custom"
},
{
"lessThan": "R323-V5",
"status": "affected",
"version": "R323-V0",
"versionType": "custom"
},
{
"lessThan": "R324-V4",
"status": "affected",
"version": "R324-V0",
"versionType": "custom"
},
{
"lessThan": "R325-V3",
"status": "affected",
"version": "R325-V0",
"versionType": "custom"
},
{
"lessThan": "R326-V1",
"status": "affected",
"version": "R326-V0",
"versionType": "custom"
},
{
"lessThan": "R327-V1",
"status": "affected",
"version": "R327-V0",
"versionType": "custom"
}
]
}
]| Source | Link |
|---|---|
| nozominetworks | www.nozominetworks.com/blog/ |
| selinc | www.selinc.com/support/security-notifications/external-reports/ |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
30 Nov 2023 16:54Current
9.7High risk
Vulners AI Score9.7
CVSS 3.16.5
EPSS0.00913