CVE-2023-5702

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 23, 2023

Updated: May 17, 2024

CWE ID 425

Summary

CVE-2023-5702 is a newly disclosed vulnerability affecting Viessmann Vitogate 3.0 up to version 2.1.3.0. The issue lies within an unspecified functionality of the /cgi-bin/ directory, allowing for direct request manipulation. This vulnerability has been made public, increasing the risk of exploitation. Although the vendor was contacted about this disclosure, they have not responded. The identifier for this issue is VDB-243140.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Viessmann Werke GmbH & Co KG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tGU4SM
https://www.cve.org/CVERecord?id=CVE-2023-5702
https://nvd.nist.gov/vuln/detail/CVE-2023-5702

Back to Vulnerability Database

CVE-2023-5702

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations