CVE-2023-6929
CVSS V2 None
CVSS V3 None
Description
EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the system, and execute privileged functionalities.
Overview
- CVE ID
- CVE-2023-6929
- Assigner
- icscert
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-12-19T23:02:08.432Z
- Last Modified Date
- 2023-12-19T23:02:08.432Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-05 | government-resource |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-6929 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6929 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 06:22:49 | Added to TrackCVE |