CVE-2023-5959

Name of the Vulnerable Software and Affected Versions Byzoro Smart S85F Management Platform version V31R02B10-01

Description A problematic issue was found in the Byzoro Smart S85F Management Platform, affecting an unknown function of the file /login.php. The manipulation of the txt newpwd argument leads to weak password recovery.

Recommendations For version V31R02B10-01, as a temporary workaround, consider restricting access to the /login.php file until a patch is available. Avoid using the txt newpwd argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.