Lucene search

MitreCVE-2023-44860

HistoryOct 06, 2023 - 11:15 p.m.

CVE-2023-44860

2023-10-0623:15:11

CWE-863

mitre

web.nvd.nist.gov

netis systems

n3mv2

cve-2023-44860

denial of service

authorization

http request

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

41.1%

JSON

An issue in NETIS SYSTEMS N3Mv2 v.1.0.1.865 allows a remote attacker to cause a denial of service via the authorization component in the HTTP request.

Affected configurations

Nvd

Node

netis-systemsn3mMatch2.0

AND

netis-systemsn3m_firmwareMatch1.0.1.865

VendorProductVersionCPE
netis-systemsn3m2.0cpe:2.3:h:netis-systems:n3m:2.0:*:*:*:*:*:*:*
netis-systemsn3m_firmware1.0.1.865cpe:2.3:o:netis-systems:n3m_firmware:1.0.1.865:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
netis-systems	n3m	2.0	cpe:2.3:h:netis-systems:n3m:2.0:::::::*
netis-systems	n3m_firmware	1.0.1.865	cpe:2.3:o:netis-systems:n3m_firmware:1.0.1.865:::::::*

References

github.com/adhikara13/CVE/blob/main/netis_N3/Improper%20Authentication%20Mechanism%20Leading%20to%20Denial-of-Service%20%28DoS%29.md

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

41.1%

JSON

Related for CVE-2023-44860