CRITICAL🇵🇱 Wersja polska

CVE-2023-6930

CVSS 9.4v3.1pub. 2023-12-19upd. 2024-11-21

EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration and log download vulnerability. This enables the attacker to disclose sensitive information and assist in authentication bypass, privilege escalation, and full system access.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
  • Eurotel Etl3100

    HW
    Eurotel
    wszystkie wersje
  • Eurotel Etl3100 Firmware

    OS
    Eurotel
    01c0101x37
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassLPE
CWE
References

Related vulnerabilities

CVE-2023-6928CRITICAL9.8PL ✓ten sam produkt

EuroTel ETL3100 — brak limitu prób logowania umożliwia przejęcie systemu

CVE-2023-6929HIGH7.5ten sam produkt

EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur...