CVE-2023-2611
First published: Thu Jun 22 2023(Updated: )
Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list. This hidden user has a password that cannot be changed by users.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Advantech R-SeeNet | <=2.4.22 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-2611?
The severity of CVE-2023-2611 is critical with a severity value of 9.8.
What is the vulnerability description of CVE-2023-2611?
Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that cannot be found in the users list, and the password for this user cannot be changed.
Which software versions are affected by CVE-2023-2611?
Advantech R-SeeNet versions up to and including 2.4.22 are affected by CVE-2023-2611.
How can I fix CVE-2023-2611?
There is no known fix or patch available for CVE-2023-2611 at the moment. It is recommended to follow the guidance provided by the vendor or product manufacturer.
Where can I find more information about CVE-2023-2611?
You can find more information about CVE-2023-2611 at the following reference URL: https://www.cisa.gov/news-events/ics-advisories/icsa-23-173-02
- collector/nvd-index
- vendor/advantech
- canonical/advantech r-seenet
- version/advantech r-seenet/2.4.22