CVE-2023-4988

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 15, 2023

Updated: May 17, 2024

Summary

CVE-2022-47848 is a vulnerability affecting Bezeq Vtech NB403-IL (BZ_2.02.07.09.13.01) and IAD604-IL (BZ_2.02.07.09.13.01, BZ_2.02.07.09.13T, and BZ_2.02.07.09.09T) devices. This issue permits remote attackers to acquire sensitive information through the UPnP service's rootDesc.xml page. The vulnerability poses a risk as unauthorized users can potentially gain access to confidential data, jeopardizing network security. It is crucial that affected device users apply the necessary patches or updates to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Financial Transaction Manager

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/topPhU
https://www.cve.org/CVERecord?id=CVE-2023-4988
https://nvd.nist.gov/vuln/detail/CVE-2023-4988

Back to Vulnerability Database