CVE-2023-0956

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 3, 2023

Updated: Aug 8, 2023

CWE ID 22

Summary

CVE-2023-0956 is a vulnerability affecting TEL-STER's TelWin SCADA WebInterface. An attacker can exploit this weakness by crafting malicious input to construct paths to files and directories, bypassing neutralization checks. This flaw enables unauthenticated adversaries to read sensitive files on the targeted system. The vulnerability poses a significant risk, as it allows unauthorized access to critical information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sNg0vV
https://www.cve.org/CVERecord?id=CVE-2023-0956
https://nvd.nist.gov/vuln/detail/CVE-2023-0956

Back to Vulnerability Database

CVE-2023-0956

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations