CVE-2023-33217

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 15, 2023

Updated: Dec 21, 2023

CWE ID 20

Summary

CVE-2023-33217 is a design flaw in the firmware upgrade mechanism of certain terminals. An attacker can exploit this vulnerability by abusing the upgrade process, leading to a permanent denial of service for the terminal. Unfortunately, the only solution to recover the affected device is to send it back to the manufacturer for repair. This issue poses a significant risk to organizations that rely on these terminals, as a successful attack could result in extended downtime and potential productivity losses.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tz3dtC
https://www.cve.org/CVERecord?id=CVE-2023-33217
https://nvd.nist.gov/vuln/detail/CVE-2023-33217

Back to Vulnerability Database

CVE-2023-33217

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations