CVE-2023-31152

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) (affected versions not specified)

Description An Authentication Bypass Using an Alternate Path or Channel issue in the SEL RTAC Web Interface allows authentication bypass. For more details, see the SEL Service Bulletin dated 2022-11-15.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Authentication Bypass Using an Alternate Path or Channel

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-288CWE-287

Related Identifiers

CVE-2023-31152

Affected Products

Sel Rtac

CVE-2023-31152

Weakness Enumeration

Related Identifiers

Affected Products

References · 6