Lucene search
CyberDanubeCVELIST:CVE-2023-5376HistoryJan 09, 2024 - 9:44 a.m.
CVE-2023-5376 TFTP Without Authentication
2024-01-0909:44:18
CWE-287
CyberDanube
www.cve.org
3
cve-2023-5376
tftp
korenix jetnet
improper authentication
firmware version
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
AI Score
9.5
Confidence
High
EPSS
0.002
Percentile
62.1%
An Improper Authentication vulnerability in Korenix JetNet TFTP allows abuse of this service.Β This issue affects JetNet devices older than firmware version 2024/01.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "JetNet Series",
"vendor": "Korenix",
"versions": [
{
"status": "affected",
"version": "firmware older than 2024/01"
}
]
}
]Related
nvd
nvd
CVE-2023-5376
2024-01-09 10:15:22
cve
cve
CVE-2023-5376
2024-01-09 10:15:22
prion
prion
Authentication flaw
2024-01-09 10:15:00
packetstorm
packetstorm
Korenix JetNet Series Unauthenticated Access
2024-01-15 00:00:00
zdt
zdt
Korenix JetNet Series Unauthenticated Access Exploit
2024-01-16 00:00:00
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
AI Score
9.5
Confidence
High
EPSS
0.002
Percentile
62.1%
Related for CVELIST:CVE-2023-5376