Vulners
Lucene search
CVE-2023-5909 Improper Validation of Certificate with Host Mismatch in PTC KEPServerEx
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | The vulnerabilities of the OPC-server software products such as KEPServerEX, ThingWorx Kepware Server, ThingWorx Industrial Connectivity, OPC-Aggregator, ThingWorx Kepware Edge, Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server, and Software Toolbox TOP Server are related to errors in the certificate validation process. These vulnerabilities allow attackers to bypass the certificate validation checks. | 14 Dec 202300:00 | – | bdu_fstec |
 | CVE-2023-5909 | 21 Dec 202310:12 | – | circl |
 | PTC KEPServerEX Trust Management Issue Vulnerability | 30 Nov 202300:00 | – | cnnvd |
 | CVE-2023-5909 | 30 Nov 202322:05 | – | cve |
 | EUVD-2023-58182 | 3 Oct 202520:07 | – | euvd |
 | PTC KEPServerEx | 30 Nov 202307:00 | – | ics |
 | CVE-2023-5909 | 30 Nov 202322:15 | – | nvd |
 | Code injection | 30 Nov 202322:15 | – | prion |
 | CVE-2023-5909 Improper Validation of Certificate with Host Mismatch in PTC KEPServerEx | 30 Nov 202322:05 | – | vulnrichment |
[
{
"defaultStatus": "unaffected",
"product": "KEPServerEX",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ThingWorx Kepware Server",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ThingWorx Industrial Connectivity",
"vendor": "PTC",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unaffected",
"product": "OPC-Aggregator",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "6.14",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ThingWorx Kepware Edge",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "1.7",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "KEPServer Enterprise",
"vendor": "Rockwell Automation ",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Industrial Gateway Server",
"vendor": "GE Gigital",
"versions": [
{
"lessThanOrEqual": "7.614",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "TOP Server",
"vendor": "Software Toolbox",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]| Source | Link |
|---|---|
| cisa | www.cisa.gov/news-events/ics-advisories/icsa-23-334-03 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
30 Nov 2023 22:05Current
7.7High risk
Vulners AI Score7.7
CVSS 3.17.5
EPSS0.00077