PT-2023-19691 · Milesight · Milesight Ur32L
Francesco Benvenuto
·
Published
2023-07-06
·
Updated
2023-07-12
·
CVE-2023-24583
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Milesight UR32L version 32.3.0.5
Description
The issue is related to OS command injection vulnerabilities in the urvpn client cmd name action functionality. A specially crafted network request can lead to arbitrary command execution. An attacker can send a network request, specifically a UDP packet, to trigger these vulnerabilities.
Recommendations
For Milesight UR32L version 32.3.0.5, consider restricting access to the urvpn client cmd name action functionality until a patch is available. As a temporary workaround, disabling the functionality that processes UDP packets related to this action may help minimize the risk of exploitation.
Exploit
Fix
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Milesight Ur32L