CVE-2023-2880

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 5, 2023

Updated: Jul 12, 2023

CWE ID 284

Summary

CVE-2023-2880 is a path traversal vulnerability affecting Frauscher Sensortechnik GmbH's FDS001 for FAdC/FAdCi versions 1.3.3 and earlier. An attacker can exploit this flaw by crafting a URL without authentication to traverse the web interface and read all files on the FDS001 device's filesystem. This vulnerability poses a significant risk as it allows unauthorized access to sensitive information, potentially compromising the security and functionality of the affected device.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Hangzhou Hikvision Digital Technology

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/qy67ik
https://www.cve.org/CVERecord?id=CVE-2023-2880
https://nvd.nist.gov/vuln/detail/CVE-2023-2880

Back to Vulnerability Database

CVE-2023-2880

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations