CVE-2023-29711
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
22/06/2023
Last modified:
12/12/2024
Description
An incorrect access control issue was discovered in Interlink PSG-5124 version 1.0.4, allows attackers to execute arbitrary code via crafted GET request.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:interlink:psg-5124_firmware:1.0.4:*:*:*:*:*:*:* | ||
| cpe:2.3:h:interlink:psg-5124:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://github.com/shellpei/LINK-Unauthorized/blob/main/CVE-2023-29711
- https://holistic-height-e6d.notion.site/LINK-PSG-5124-Switch-remote-command-vulnerability-da4fd8fb450d42879b07ef3a953a2366
- https://github.com/shellpei/LINK-Unauthorized/blob/main/CVE-2023-29711
- https://holistic-height-e6d.notion.site/LINK-PSG-5124-Switch-remote-command-vulnerability-da4fd8fb450d42879b07ef3a953a2366