CVE-2023-49235

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 9, 2024
Updated: Jan 12, 2024

Summary

CVE-2023-49235 is a critical vulnerability discovered in libremote_dbg.so on TRENDnet TV-IP1314PI 5.5.3 200714 devices. This vulnerability allows an attacker to bypass validation and execute a shell command by mishandling the filtering of debug information during the use of popen. The vulnerability has a base severity score of 9.8 out of 10 and poses high risks to organizations, with potential impacts on integrity and confidentiality. The exploitability score is 3.9 out of 10, indicating a moderate level of difficulty for attackers to exploit this vulnerability. To remediate this issue, it is recommended to update the affected devices to a patched version or apply any security patches provided by the vendor.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-49235 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options