CVE-2023-43849

May 28, 2024, 7:15 p.m.

Product(s) Impacted

Aten PE6208

  • 2.3.228
  • 2.4.232

Description

Incorrect access control in firmware upgrade function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to submit a firmware image via HTTP POST requests. This may result in DoS or remote code execution.

Weaknesses

Date

Published: May 28, 2024, 7:15 p.m.

Last Modified: May 28, 2024, 7:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References