CVE-2023-37220

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-37220
Synel Terminals - CWE-494: Download of Code Without Integrity Check

7.2 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.gov.il/en/Departments/faq/cve_advisories Third Party Advisory
https://www.gov.il/en/Departments/faq/cve_advisories Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:synel:synergy\/a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy\/a:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:synel:synergy_touch_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy_touch:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:synel:synergy_10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy_10:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:synel:synergy_5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy_5:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:synel:sy-910_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-910:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:synel:synergy\/x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy\/x:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:synel:sy110_face_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy110_face:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:synel:bioentry-w2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:bioentry-w2:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:synel:biolite-n2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:biolite-n2:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:synel:bioentry_p2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:bioentry_p2:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:synel:sy-711_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-711:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:synel:sy-715_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-715:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:synel:sy-751_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-751:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:synel:sy-755_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-755:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:synel:sy-777_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-777:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:synel:sy-785_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-785:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:synel:sy-765_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-765:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:synel:sy-7500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-7500:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:synel:sy-745_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-745:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:synel:sy-780_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-780:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:synel:synergy_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy:-:*:*:*:*:*:*:*
History

21 Nov 2024, 08:11

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 9.8 		v2 : unknown
v3 : 7.2
References () https://www.gov.il/en/Departments/faq/cve_advisories - Third Party Advisory () https://www.gov.il/en/Departments/faq/cve_advisories - Third Party Advisory

07 Sep 2023, 17:44

Type Values Removed Values Added
References (MISC) https://www.gov.il/en/Departments/faq/cve_advisories - (MISC) https://www.gov.il/en/Departments/faq/cve_advisories - Third Party Advisory
First Time Synel biolite-n2 Firmware
Synel sy-910
Synel sy-777 Firmware
Synel synergy\/x
Synel sy-745
Synel sy110 Face
Synel sy110 Face Firmware
Synel sy-765
Synel sy-765 Firmware
Synel synergy\/a
Synel sy-780 Firmware
Synel sy-711 Firmware
Synel synergy 10
Synel sy-745 Firmware
Synel synergy 5
Synel synergy Touch
Synel sy-7500
Synel bioentry P2
Synel bioentry-w2
Synel synergy 10 Firmware
Synel sy-910 Firmware
Synel
Synel synergy 5 Firmware
Synel bioentry-w2 Firmware
Synel sy-780
Synel synergy\/x Firmware
Synel sy-755 Firmware
Synel sy-751
Synel synergy
Synel sy-751 Firmware
Synel sy-755
Synel bioentry P2 Firmware
Synel sy-711
Synel sy-715
Synel synergy Touch Firmware
Synel sy-777
Synel synergy Firmware
Synel sy-715 Firmware
Synel synergy\/a Firmware
Synel biolite-n2
Synel sy-785 Firmware
Synel sy-785
Synel sy-7500 Firmware
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 9.8
CPE cpe:2.3:h:synel:sy-755:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-780_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-765_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:synergy_5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-751_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:biolite-n2:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy_10:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-910_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-7500:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:bioentry_p2:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-910:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-777_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:synergy_touch_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-715:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-711:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy\/x:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-745:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:bioentry-w2:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-777:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy110_face_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy_5:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:bioentry-w2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy110_face:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:biolite-n2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy_touch:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-755_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:synergy_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-765:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:synergy\/a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-7500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:synergy\/a:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-711_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-715_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-745_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:synergy\/x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-785:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:sy-785_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-780:-:*:*:*:*:*:*:*
cpe:2.3:h:synel:sy-751:-:*:*:*:*:*:*:*
cpe:2.3:o:synel:bioentry_p2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:synel:synergy_10_firmware:*:*:*:*:*:*:*:*

03 Sep 2023, 14:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-09-03 14:15

Updated : 2024-11-21 08:11

NVD link : CVE-2023-37220

Mitre link : CVE-2023-37220

CVE.ORG link : CVE-2023-37220

JSON object : View

Products Affected

synel

  • sy-751_firmware
  • sy-765_firmware
  • sy-751
  • sy-755_firmware
  • sy-910
  • synergy_5_firmware
  • sy-910_firmware
  • sy-715_firmware
  • sy-765
  • synergy_5
  • sy-745
  • sy-745_firmware
  • synergy\/a
  • biolite-n2
  • synergy\/a_firmware
  • synergy_touch
  • bioentry_p2
  • sy110_face_firmware
  • sy110_face
  • synergy\/x_firmware
  • sy-711_firmware
  • bioentry-w2_firmware
  • sy-785_firmware
  • synergy_firmware
  • sy-785
  • synergy_10_firmware
  • sy-777
  • sy-715
  • synergy
  • bioentry_p2_firmware
  • bioentry-w2
  • sy-7500_firmware
  • synergy_touch_firmware
  • sy-755
  • synergy_10
  • sy-777_firmware
  • biolite-n2_firmware
  • sy-7500
  • sy-780
  • synergy\/x
  • sy-711
  • sy-780_firmware
CWE
CWE-494

Download of Code Without Integrity Check


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024