CVE-2023-1968

Name of the Vulnerable Software and Affected Versions Illumina Universal Copy Service versions 2.x

Description The issue is related to the binding of Illumina Universal Copy Service to an unrestricted IP address, allowing an unauthenticated malicious actor to use the service to listen on all IP addresses, including those capable of accepting remote communications. This could potentially enable the actor to intercept and manipulate network traffic, as well as remotely transmit arbitrary commands. The estimated number of potentially affected devices worldwide is not specified. There are no known public exploits specifically targeting this issue, and there is no confirmation that the vulnerability has been exploited in real-world attacks.

Recommendations For Illumina Universal Copy Service version 2.x, update to a patched version to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable service to minimize the risk of exploitation. Avoid using the service for remote communications until the issue is resolved.