PT-2023-8159 · Voltronic Power · Voltronic Power Viewpower

Esj4Y

Publicado

2023-12-20

Atualizado

2025-07-07

CVE-2023-51571

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Voltronic Power ViewPower Pro (affected versions not specified)

Description The issue is related to the lack of authentication in the SocketService module of Voltronic Power ViewPower Pro, allowing remote attackers to create a denial-of-service condition on affected installations. The specific flaw exists within the SocketService module, which listens on UDP port 41222 by default. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Missing Authentication

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-306CWE-862

Identificadores relacionados

BDU:2024-00143

CVE-2023-51571

ZDI-23-1877

Produtos afetados

Voltronic Power Viewpower

PT-2023-8159 · Voltronic Power · Voltronic Power Viewpower

CVE-2023-51571

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9