CVE-2023-4291

Name of the Vulnerable Software and Affected Versions Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi versions 1.4.24 and all previous versions

Description The issue is a remote code execution (RCE) vulnerability that can be exploited via manipulated parameters of the web interface without authentication, potentially leading to a full compromise of the FDS101 device.

Recommendations For versions 1.4.24 and all previous versions, consider disabling access to the web interface until a patch is available to prevent exploitation of the RCE vulnerability. Restrict access to the device to minimize the risk of compromise. Avoid using manipulated parameters in the web interface to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.