CVE-2023-48428

CVSS V2 None CVSS V3 None
Description
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). The radius configuration mechanism of affected products does not correctly check uploaded certificates. A malicious admin could upload a crafted certificate resulting in a denial-of-service condition or potentially issue commands on system level.
Overview
  • CVE ID
  • CVE-2023-48428
  • Assigner
  • siemens
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-12-12T11:27:19.590Z
  • Last Modified Date
  • 2023-12-12T11:27:19.590Z
References
History
Created Old Value New Value Data Type Notes
2024-06-24 23:30:45 Added to TrackCVE