CVE-2023-6574 : A vulnerability was found in Byzoro Smart S20 up to 20231120 and classified as c

A vulnerability was found in Byzoro Smart S20 up to 20231120 and classified as critical. Affected by this issue is some unknown functionality of the file /sysmanage/updateos.php of the component HTTP POST Request Handler. The manipulation of the argument 1_file_upload leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-247154 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Published 2023-12-07 20:15:39

Updated 2024-05-17 02:33:47

Source VulDB

View at NVD, CVE.org

Products affected by CVE-2023-6574

Byzoro » Smart S20 Firmware
Versions up to, including, (<=) 2023-11-20
cpe:2.3:o:byzoro:smart_s20_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Byzoro » Smart S20 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2023-6574

EPSS FAQ

0.19%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 38 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-6574

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.5	MEDIUM	AV:N/AC:L/Au:S/C:P/I:P/A:P	8.0	6.4	VulDB
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
6.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L	2.8	3.4	VulDB
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: Low
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2023-6574

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Assigned by: cna@vuldb.com (Primary)

References for CVE-2023-6574

https://vuldb.com/?ctiid.247154

Login required
Third Party Advisory
https://github.com/flyyue2001/cve/blob/main/smart_sql_updateos.md

cve/smart_sql_updateos.md at main · flyyue2001/cve · GitHub
Exploit;Third Party Advisory
https://vuldb.com/?id.247154

CVE-2023-6574: Beijing Baichuo Smart S20 HTTP POST Request updateos.php unrestricted upload
Third Party Advisory
https://vuldb.com/?submit.241172

Submit #241172: Beijing Baizhuo Network Technology Co., Ltd Byzro Networks Smart S20 S20 security gateway intelligent management platform

Jump to

Vulnerability Details : CVE-2023-6574

Products affected by CVE-2023-6574

Exploit prediction scoring system (EPSS) score for CVE-2023-6574

CVSS scores for CVE-2023-6574

CWE ids for CVE-2023-6574

References for CVE-2023-6574