CVE-2023-34215

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 17, 2023
Updated: Aug 23, 2023
CWE ID 77

Summary

CVE-2023-34215 is a command-injection vulnerability affecting TN-5900 Series firmware versions v3.3 and earlier. This issue arises due to insufficient input validation and flawed authentication in the certification-generation function, making it susceptible to remote code execution by malicious users. Successful exploitation can lead to significant security risks and potential device compromise. Users are advised to update their firmware to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share