CVE-2023-37864

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Aug 9, 2023

Updated: Aug 15, 2023

CWE ID 494

Summary

CVE-2023-37864 is a vulnerability affecting PHOENIX CONTACT's WP 6xxx series web panels. With SNMPv2 write privileges, an unauthorized remote attacker can exploit this weakness to obtain full access to the device, potentially leading to significant security risks. This issue can be mitigated by updating the affected web panels to version 4.0.10 or implementing appropriate SNMP security measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r8dO7p
https://www.cve.org/CVERecord?id=CVE-2023-37864
https://nvd.nist.gov/vuln/detail/CVE-2023-37864

Back to Vulnerability Database

CVE-2023-37864

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations