CVE-2023-33469
CVSS V2 None
CVSS V3 None
Description
In instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level.
Overview
- CVE ID
- CVE-2023-33469
- Assigner
- cve@mitre.org
- Vulnerability Status
- Analyzed
- Published Version
- 2023-08-09T20:15:10
- Last Modified Date
- 2023-08-17T01:40:13
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| AND | ||||
| cpe:2.3:o:kramerav:via_go2_firmware:*:*:*:*:*:*:*:* | 1 | OR | 4.0.1.1326 | |
| cpe:2.3:h:kramerav:via_go2:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:kramerav:via_connect2_firmware:*:*:*:*:*:*:*:* | 1 | OR | 4.0.1.1326 | |
| cpe:2.3:h:kramerav:via_connect2:-:*:*:*:*:*:*:* | 0 | OR |
References
| Reference URL | Reference Tags |
|---|---|
| http://kramerav.com | Product |
| https://github.com/Sharpe-nl/CVEs/tree/main/CVE-2023-33469 | Exploit Third Party Advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-33469 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33469 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-09-06 03:25:11 | Added to TrackCVE | |||
| 2023-09-06 03:25:13 | Weakness Enumeration | new |