CVE-2023-42425

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 31, 2023

Updated: Nov 9, 2023

CWE ID 295

Summary

CVE-2023-42425 is a newly disclosed vulnerability affecting Turing Video's Turing Edge+ EVC5FD v.1.38.6. This issue enables remote attackers to execute arbitrary code and gain access to sensitive information through the cloud connection components. The vulnerability poses a significant risk as it bypasses authentication mechanisms, allowing unauthorized access and potential data theft. The exact technical details of the exploit are not yet publicly available, but it is recommended that affected users upgrade to the latest version of the software to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Turing

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/snxmtV
https://www.cve.org/CVERecord?id=CVE-2023-42425
https://nvd.nist.gov/vuln/detail/CVE-2023-42425

Back to Vulnerability Database

CVE-2023-42425

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations