Lucene search
IcscertCVELIST:CVE-2023-46687HistoryFeb 09, 2024 - 3:49 a.m.
CVE-2023-46687 Emerson Rosemount GC370XA, GC700XA, GC1500XA Command Injection
2024-02-0903:49:28
CWE-77
icscert
www.cve.org
emerson rosemount
command injection
vulnerability
remote access
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.4%
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an unauthenticated user with network access could execute arbitrary commands in root context from a remote computer.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Rosemount GC370XA",
"vendor": "Emerson",
"versions": [
{
"lessThanOrEqual": "Version 4.1.5",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Rosemount GC700XA",
"vendor": "Emerson",
"versions": [
{
"lessThanOrEqual": "Version 4.1.5",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Rosemount GC1500XA",
"vendor": "Emerson",
"versions": [
{
"lessThanOrEqual": "Version 4.1.5",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2024-02-09 04:15:00
nvd
nvd
CVE-2023-46687
2024-02-09 04:15:07
cve
cve
CVE-2023-46687
2024-02-09 04:15:07
ics
ics
Emerson Rosemount GC370XA, GC700XA, GC1500XA
2024-01-30 12:00:00
thn
thn
Researchers Warn of Flaws in Widely Used Industrial Gas Analysis Equipment
2024-06-28 07:52:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.4%
Related for CVELIST:CVE-2023-46687