CVE-2023-36144

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jun 30, 2023

Updated: Jul 10, 2023

CWE ID 862

Summary

CVE-2023-36144 is a newly identified vulnerability affecting Intelbras Switch SG 2404 MR in firmware version 1.00.54. This issue enables an unauthenticated attacker to bypass authentication and download the backup file of the device. By obtaining the backup file, the attacker could gain critical insights into the device's configuration, potentially leading to further exploitation. This vulnerability poses a significant risk to network security and necessitates immediate attention and remediation from affected organizations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Intelbras

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rvu-tr
https://www.cve.org/CVERecord?id=CVE-2023-36144
https://nvd.nist.gov/vuln/detail/CVE-2023-36144

Back to Vulnerability Database

CVE-2023-36144

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations