PT-2023-25633 · Tbox Rtus · Tbox Rtus
Floris Hendriks
+2
·
Published
2023-07-03
·
Updated
2023-07-07
·
CVE-2023-36611
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
TBox RTUs (affected versions not specified)
Description
The issue allows low privilege users to access software security tokens of higher privilege. This could enable an attacker with
user privileges to access files requiring higher privileges by establishing an SSH session and providing the other tokens.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tbox Rtus