PT-2023-24911 · Etic Telecom · Etic Telecom Ras
Alik Koldobsky
+4
·
Published
2023-08-23
·
Updated
2023-12-28
·
CVE-2023-3453
CVSS v3.1
8.1
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ETIC Telecom RAS versions 4.7.0 and prior
Description
The web management portal authentication is disabled by default in the affected versions. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition.
Recommendations
For ETIC Telecom RAS versions 4.7.0 and prior, enable the web management portal authentication to prevent unauthorized access and potential configuration alterations or denial-of-service conditions.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Etic Telecom Ras