CVE-2023-0897

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 26, 2023
Updated: Nov 7, 2023
CWE ID 384

Summary

CVE-2023-0897 is a session hijack vulnerability affecting Sielco PolyEco1000. The vulnerability is caused by a weak cookie that is susceptible to brute force attacks, the absence of SSL encryption, and the visibility of the session in requests. The affected products include tzob5e, vdUjrt, tzob5f, tzob5c, tzob5d, tzob5i, tzob5h, tzob5k, and tzob5l. The vulnerability has a risk score of 65 and a base severity rating of HIGH. It requires user interaction and can impact the integrity and confidentiality of an organization's data. Remediation measures are not mentioned in the provided information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-0897 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options