CVE-2023-33472

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 13, 2024

Updated: Jan 22, 2024

Summary

CVE-2023-33472 is a vulnerability affecting Scada-LTS version 2.7.5.2 build 4551883606 and earlier. This issue grants low-level authenticated attackers the ability to escalate privileges, execute arbitrary code, and obtain sensitive information. The vulnerability lies within the Event Handlers function, allowing for potentially serious consequences in industrial control systems. Successful exploitation could result in significant disruption or unauthorized access to critical systems. Organizations using the affected Scada-LTS version are advised to apply the available patch as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t8X_Of
https://www.cve.org/CVERecord?id=CVE-2023-33472
https://nvd.nist.gov/vuln/detail/CVE-2023-33472

Back to Vulnerability Database

CVE-2023-33472

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations