Lucene search
K

5 matches found

OSV
OSV
added 2023/06/29 9:15 p.m.6 views

CVE-2023-36607

The affected TBox RTUs are missing authorization for running some API commands. An attacker running these commands could reveal sensitive information such as software versions and web server file contents...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References1
NVD
NVD
added 2023/06/29 9:15 p.m.31 views

CVE-2023-36607

The affected TBox RTUs are missing authorization for running some API commands. An attacker running these commands could reveal sensitive information such as software versions and web server file contents...

5.3CVSS6AI score0.00492EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/29 8:30 p.m.26 views

CVE-2023-36607 CVE-2023-36607

The affected TBox RTUs are missing authorization for running some API commands. An attacker running these commands could reveal sensitive information such as software versions and web server file contents...

5.6AI score0.00492EPSS
Exploits0References1
CVE
CVE
added 2023/06/29 8:30 p.m.48 views

CVE-2023-36607

CVE-2023-36607 relates to Ovarro TBox RTUs and involves missing authorization to run certain API commands. The EU/ICS advisory details affected firmware ranges across multiple TBox models (e.g., TBox MS-CPU32, MS-CPU32-S2, LT2, TG2, RM2) with versions up to 1.50.598 and prior, plus earlier versio...

5.3CVSS5.6AI score0.00492EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2023/06/29 6:0 a.m.71 views

Ovarro TBox RTUs

1. EXECUTIVE SUMMARY ​CVSS v3 7.2 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: Ovarro ​Equipment: TBox RTUs ​Vulnerabilities: Missing Authorization, Use of Broken or Risky Cryptographic Algorithm, Inclusion of Functionality from Untrusted Control Sphere, Insufficient Entropy,...

7.2CVSS7.3AI score0.00698EPSS
Exploits0References8
Rows per page
Query Builder