CVE-2023-35765

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 7, 2023

Updated: Jul 13, 2023

CWE ID 256

Summary

CVE-2023-35765 is a vulnerability affecting PiiGAB M-Bus software. This issue arises due to the software storing admin credentials in a plaintext file, which is accessible to low-level users. An attacker who exploits this vulnerability can easily obtain the admin credentials, resulting in unauthorized access to the system with elevated privileges. This represents a significant risk to the security of the affected system and necessitates immediate remediation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rze6Xo
https://www.cve.org/CVERecord?id=CVE-2023-35765
https://nvd.nist.gov/vuln/detail/CVE-2023-35765

Back to Vulnerability Database

CVE-2023-35765

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations