CVE-2023-29114

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Nov 5, 2024

CWE ID 200

Summary

CVE-2023-29114 is a vulnerability affecting a web management application that allows unauthorized access to system logs. This issue results in the exposure of sensitive information, including Wi-Fi access point credentials, APN web address and credentials, IPSEC credentials, web interface access credentials, JuiceBox system components, C2G configuration details, internal IP addresses, and OTA firmware update configurations. All of this information is stored in logs in an unencrypted plaintext format, making it easily obtainable by attackers.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zdyNhR
https://www.cve.org/CVERecord?id=CVE-2023-29114
https://nvd.nist.gov/vuln/detail/CVE-2023-29114

Back to Vulnerability Database

CVE-2023-29114

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations