A user without administrator permissions with access to the UC500 windows system could perform a memory dump of the running processes and extract clear credentials or valid session tokens.
References
Link | Resource |
---|---|
https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-03 | Third Party Advisory US Government Resource |
https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-03 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 08:37
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-03 - Third Party Advisory, US Government Resource | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.1 |
29 Dec 2023, 16:25
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-03 - Third Party Advisory, US Government Resource | |
CWE | NVD-CWE-Other | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.3 |
CPE | cpe:2.3:h:efacec:uc_500e:-:*:*:*:*:*:*:* cpe:2.3:o:efacec:uc_500e_firmware:10.1.0:*:*:*:*:*:*:* |
|
First Time |
Efacec uc 500e Firmware
Efacec Efacec uc 500e |
20 Dec 2023, 13:50
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-20 00:15
Updated : 2024-11-21 08:37
NVD link : CVE-2023-50706
Mitre link : CVE-2023-50706
CVE.ORG link : CVE-2023-50706
JSON object : View
Products Affected
efacec
- uc_500e
- uc_500e_firmware
CWE