Vulnerability Details : CVE-2023-43261
Public exploit exists!
An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router components.
Vulnerability category: Information leak
Products affected by CVE-2023-43261
- cpe:2.3:o:milesight:ur32l_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:milesight:ur5x_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:milesight:ur32_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:milesight:ur35_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:milesight:ur41_firmware:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-43261
1.99%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 89 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-43261
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2023-43261
-
The product writes sensitive information to a log file.Assigned by: nvd@nist.gov (Primary)
References for CVE-2023-43261
-
https://github.com/win3zz/CVE-2023-43261
GitHub - win3zz/CVE-2023-43261: CVE-2023-43261 - Credential Leakage Through Unprotected System Logs and Weak Password EncryptionExploit;Third Party Advisory
-
https://medium.com/%40win3zz/inside-the-router-how-i-accessed-industrial-routers-and-reported-the-flaws-29c34213dfdf
Inside the Router: How I Accessed Industrial Routers and Reported the Flaws | by Bipin Jitiya | Medium
-
http://milesight.com
Milesight | 5G, AI, IoT and LoRaWANProduct
-
https://medium.com/@win3zz/inside-the-router-how-i-accessed-industrial-routers-and-reported-the-flaws-29c34213dfdf
Inside the Router: How I Accessed Industrial Routers and Reported the Flaws | by Bipin Jitiya | Oct, 2023 | MediumExploit
-
https://support.milesight-iot.com/support/home
Support : IoT SupportProduct
-
http://packetstormsecurity.com/files/176988/Milesight-UR5X-UR32L-UR32-UR35-UR41-Credential-Leakage.html
Milesight UR5X / UR32L / UR32 / UR35 / UR41 Credential Leakage ≈ Packet Storm
-
http://ur5x.com
Broken Link;Not Applicable
Jump to