CVE-2023-29117

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 5, 2024

Updated: Nov 8, 2024

CWE ID 287

Summary

CVE-2023-29117 is a vulnerability affecting the Waybox Enel X web management API. Hackers can exploit this issue to bypass authentication and gain administrator privileges within the Waybox system. This vulnerability poses a serious risk, as an attacker with such access could make significant modifications to the system configuration or install malware. The Waybox team is encouraged to release a patch to address this issue promptly and advise users to apply it as soon as possible to protect their systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zdyNhV
https://www.cve.org/CVERecord?id=CVE-2023-29117
https://nvd.nist.gov/vuln/detail/CVE-2023-29117

Back to Vulnerability Database

CVE-2023-29117

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations