CVE-2023-24063

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Aug 8, 2024

Updated: Aug 19, 2024

CWE ID 354

Summary

CVE-2023-24063 is a vulnerability affecting Diebold Nixdorf Vynamic Security Suite (VSS) versions prior to 3.3.0 SR10. During the Pre-Boot Authorization (PBA) process, the software fails to validate the /etc/mtab file. A physical attacker with access to the system's hard disk can manipulate its contents and exploit this vulnerability. This issue may lead to unauthorized access and potential data compromise. System administrators are advised to upgrade to a patched version to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Diebold Nixdorf

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/psrL6F
https://www.cve.org/CVERecord?id=CVE-2023-24063
https://nvd.nist.gov/vuln/detail/CVE-2023-24063

Back to Vulnerability Database

CVE-2023-24063

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations