CVE-2023-3634 Festo: MSE6-C2M/D2M/E2M Incomplete User Documentation of Remote Accessible Functions

🗓️ 16 Apr 2026 04:40:29Reported by CERTVDEType

Festo MSE6 permits remote authenticated access to undocumented test mode, risking confidentiality and integrity.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2023-3634	16 Apr 202604:40	–	attackerkb
BDU FSTEC	The vulnerability of microprogramming software for controlling and monitoring air consumption in pneumatic systems such as Festo MSE6-C2M, MSE6-D2M, and MSE6-E2M allows a intruder to compromise the confidentiality, integrity, and accessibility of protected information.	19 Sep 202300:00	–	bdu_fstec
Circl	CVE-2023-3634	20 Nov 202511:00	–	circl
CNNVD	Festo MSE6 安全漏洞	16 Apr 202600:00	–	cnnvd
CNVD	Denial of Service Vulnerability in Various festo Products	8 Feb 202500:00	–	cnvd
CVE	CVE-2023-3634	16 Apr 202604:40	–	cve
EUVD	EUVD-2023-44280	16 Apr 202606:31	–	euvd
ICS	Festo MSE6-C2M/D2M/E2M	5 Sep 202310:00	–	ics
NVD	CVE-2023-3634	16 Apr 202605:16	–	nvd
Positive Technologies	PT-2023-5231	30 Aug 202300:00	–	ptsecurity

[
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-C2M-5000-FB36-D-M-RG-BAR-M12L4-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-C2M-5000-FB36-D-M-RG-BAR-M12L5-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-C2M-5000-FB43-D-M-RG-BAR-M12L4-MQ1-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-C2M-5000-FB43-D-M-RG-BAR-M12L5-MQ1-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-C2M-5000-FB44-D-M-RG-BAR-AMI-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-C2M-5000-FB44-D-RG-BAR-AMI-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-D2M-5000-CBUS-S-RG-BAR-VCB-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-E2M-5000-FB13-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-E2M-5000-FB36-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-E2M-5000-FB37-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-E2M-5000-FB43-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MSE6-E2M-5000-FB44-AGD",
    "vendor": "Festo",
    "versions": [
      {
        "status": "affected",
        "version": "*"
      }
    ]
  }
]

Source	Link
certvde	www.certvde.com/de/advisories/VDE-2023-020/
festo	www.festo.csaf-tp.certvde.com/.well-known/csaf/white/2023/fsa-202304.json

16 Apr 2026 04:40Current

CVSS 3.18.8

EPSS0.00504

CWE-1242