First published: Sat Nov 11 2023(Updated: )
A vulnerability, which was classified as problematic, was found in Byzoro Smart S85F Management Platform V31R02B10-01. Affected is an unknown function of the file /login.php. The manipulation of the argument txt_newpwd leads to weak password recovery. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-244992. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
=v31r02b10-01 | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2023-5959.
The severity of CVE-2023-5959 is medium, with a severity value of 4.3.
The affected software for CVE-2023-5959 is Beijing Baichuo Smart S85F Management Platform V31R02B10-01.
The CWE number for CVE-2023-5959 is 640.
To fix the vulnerability, apply the latest updates or patches provided by Beijing Baichuo Smart S85F Management Platform.