CVE-2023-43891

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 2, 2023

Updated: Oct 4, 2023

CWE ID 77

Summary

CVE-2023-43891 is a newly discovered vulnerability affecting the Netis N3Mv2-V1.0.1.865 firmware. The Changing Username and Password function of this device contains a command injection flaw, which can be exploited using a specially crafted payload. Successful attacks could allow an attacker to execute arbitrary commands on the affected device, posing a significant security risk. Users are strongly advised to update their firmware to a secure version as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/syYHXa
https://www.cve.org/CVERecord?id=CVE-2023-43891
https://nvd.nist.gov/vuln/detail/CVE-2023-43891

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2023-43891

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations