CVE-2023-6032

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 15, 2023
Updated: Nov 30, 2023
CWE ID 22

Summary

CVE-2023-6032 is a vulnerability categorized as CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'). This vulnerability affects the Network Management Card in products t0YY4u and t0YY4s, allowing an attacker to perform file system enumeration and file downloads via HTTPS. The base severity of this vulnerability is rated as MEDIUM, with a base score of 5.3. The exploitability score is 3.9, indicating a moderate likelihood of exploitation. The potential danger to an organization is considered low in terms of confidentiality impact, but it poses a risk to the integrity of the system. It is recommended to remediate this vulnerability by applying the necessary patches or updates provided by the product vendor.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-6032 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options