CVE-2023-43134
First published: Wed Sep 20 2023(Updated: )
There is an unauthorized access vulnerability in Netis 360RAC1200 v1.3.4517, which allows attackers to obtain sensitive information of the device without authentication, obtain user tokens, and ultimately log in to the device backend management.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netis-systems 360r Firmware | =1.3.4517 | |
| Netis-systems 360r |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the unauthorized access vulnerability in Netis 360RAC1200 v1.3.4517?
The vulnerability ID is CVE-2023-43134.
What is the severity level of CVE-2023-43134?
The severity level of CVE-2023-43134 is critical with a score of 9.8 out of 10.
What is the affected software version of CVE-2023-43134?
The affected software version of CVE-2023-43134 is Netis 360RAC1200 v1.3.4517.
How does the unauthorized access vulnerability in Netis 360RAC1200 v1.3.4517 allow attackers to obtain sensitive information?
The vulnerability allows attackers to obtain sensitive information of the device without authentication.
Is there a fix available for CVE-2023-43134?
To fix the vulnerability, users should update to a version of the firmware that is not affected by the vulnerability.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/netis-systems
- canonical/netis-systems 360r firmware
- version/netis-systems 360r firmware/1.3.4517
- canonical/netis-systems 360r