CVE-2023-5777

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 6, 2023
Updated: Nov 14, 2023
CWE ID 798

Summary

CVE-2023-5777 is a cyber vulnerability that affects Weintek EasyBuilder Pro, a software used for creating human-machine interface (HMI) applications. The vulnerability allows the private key to be exposed to the public, even after it has been deleted, during the transmission of crash reports. This could lead to unauthorized remote control of the crash report server. The vulnerability has a base severity rating of CRITICAL and a base score of 9.8 out of 10. It requires no special privileges or user interaction for exploitation and can be exploited over a network. The impact of this vulnerability on an organization's integrity and confidentiality is rated as HIGH. The affected products include several versions of Weintek EasyBuilder Pro (rq_ny6, rq_ny7, rq_ny8, t0W1tB, t0W1tC).

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-5777 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options