CVE-2023-40707

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 24, 2023

Updated: Aug 29, 2023

CWE ID 521

Summary

CVE-2023-40707 is a vulnerability affecting the SNAP PAC S1 Firmware version R10.3b. The built-in web server of this device lacks a requirement for complex passwords, making it susceptible to brute force attacks. Attackers can take advantage of this weakness if users have not set up robust credentials. Successful exploitation could lead to unauthorized access and potential security breaches. To mitigate this risk, it is strongly recommended that users implement complex passwords for their SNAP PAC S1 devices and apply any available patches or updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Opto 22

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sZBVPD
https://www.cve.org/CVERecord?id=CVE-2023-40707
https://nvd.nist.gov/vuln/detail/CVE-2023-40707

Back to Vulnerability Database

CVE-2023-40707

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations