CVE-2023-39171

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Dec 7, 2023

Updated: Dec 12, 2023

CWE ID 668

Summary

CVE-2023-39171: A vulnerability has been discovered in SENEC Storage Box V1, V2, and V3 devices. These devices inadvertently expose a management UI, putting them at risk of unauthorized access due to publicly known admin credentials. Unsecured access to the UI could potentially lead to data theft, unauthorized configuration changes, or even complete system takeover. Users are urged to apply the necessary patches or updates to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

EnBW Energie Baden-Wuerttemberg

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sHNRd4
https://www.cve.org/CVERecord?id=CVE-2023-39171
https://nvd.nist.gov/vuln/detail/CVE-2023-39171

Back to Vulnerability Database

CVE-2023-39171

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations