CVE-2023-27409

CVSS V2 None CVSS V3 None
Description
A vulnerability has been identified in SCALANCE LPE9403 (All versions < V2.1). A path traversal vulnerability was found in the `deviceinfo` binary via the `mac` parameter. This could allow an authenticated attacker with access to the SSH interface on the affected device to read the contents of any file named `address`.
Overview
  • CVE ID
  • CVE-2023-27409
  • Assigner
  • productcert@siemens.com
  • Vulnerability Status
  • Received
  • Published Version
  • 2023-05-09T13:15:16
  • Last Modified Date
  • 2023-05-09T13:15:16
References
History
Created Old Value New Value Data Type Notes
2023-05-09 14:00:34 Added to TrackCVE
2023-05-09 14:00:39 Weakness Enumeration new