CVE-2023-6533

CVSS 3.1 Score 6.5 of 10 (medium)

Attack Complexity low
Availability high
Confidentiality none
Integrity none
Scope unchanged
Privileges Required none

Details

Published Feb 21, 2024
Updated: Feb 22, 2024
CWE ID 754
CWE ID 345

Summary

CVE-2023-6533 is a vulnerability affecting PC Controller versions 5.54.0 and earlier. Maliciously crafted Device Reset Locally Command Class packets can be sent to the controller, causing it to believe that the end device has left the network. Consequently, frames originating from the end device will be ignored by the controller. This issue may result in communication disruption and potential unauthorized access to the network.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share