Lucene search

K
nvd[email protected]NVD:CVE-2023-22577
HistoryApr 24, 2023 - 9:15 a.m.

CVE-2023-22577

2023-04-2409:15:09
CWE-200
web.nvd.nist.gov
white rabbit switch
unauthenticated access
sensitive information
password hashes
snmp
community strings

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.4%

Within White Rabbit Switch it’s possible as an unauthenticated user to retrieve sensitive information such as password hashes and the SNMP community strings.

Affected configurations

NVD
Node
home.cernwhite_rabbit_switchMatch-
AND
home.cernwhite_rabbit_switch_firmwareRange6.0.1

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.4%

Related for NVD:CVE-2023-22577