CVE-2023-23571
First published: Thu Jul 06 2023(Updated: )
An access violation vulnerability exists in the eventcore functionality of Milesight UR32L v32.3.0.5. A specially crafted network request can lead to denial of service. An attacker can send a network request to trigger this vulnerability.
Credit: talos-cna@cisco.com talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Milesight Ur32l Firmware | =32.3.0.5 | |
| Milesight UR32L |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this access violation vulnerability?
The vulnerability ID for this access violation vulnerability is CVE-2023-23571.
What is the severity of CVE-2023-23571?
The severity of CVE-2023-23571 is high with a score of 7.5.
What is the affected software for CVE-2023-23571?
The affected software for CVE-2023-23571 is Milesight UR32L v32.3.0.5 firmware.
How can this vulnerability be exploited?
This vulnerability can be exploited by sending a specially crafted network request to the eventcore functionality of Milesight UR32L v32.3.0.5.
Is there a fix available for CVE-2023-23571?
Currently, there is no information available about a fix for CVE-2023-23571. It is recommended to follow the vendor's security advisories for updates.
- collector/nvd-index
- agent/type
- agent/author
- agent/softwarecombine
- agent/weakness
- agent/references
- agent/description
- collector/nvd-api
- agent/software-canonical-lookup-request
- agent/severity
- agent/event
- agent/tags
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- vendor/milesight
- canonical/milesight ur32l firmware
- version/milesight ur32l firmware/32.3.0.5
- canonical/milesight ur32l