Lucene search

[email protected]NVD:CVE-2023-27921

HistoryMay 23, 2023 - 2:15 a.m.

CVE-2023-27921

2023-05-2302:15:09

CWE-798

[email protected]

web.nvd.nist.gov

jins meme core

firmware vulnerability

data decryption

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

23.8%

JSON

JINS MEME CORE Firmware version 2.2.0 and earlier uses a hard-coded cryptographic key, which may lead to data acquired by a sensor of the affected product being decrypted by a network-adjacent attacker.

Affected configurations

NVD

Node

jinsjins_meme_firmwareRange<2.3.0

AND

jinsjins_memeMatch-

References

jinsmeme.com/media/2023-04-fwapp2

jvn.jp/en/jp/JVN13306058/

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

23.8%

JSON

Related for NVD:CVE-2023-27921

cve1 jvn1 cvelist1 prion1