The update process in OMICRON StationGuard and OMICRON StationScout before 2.21 can be exploited by providing a modified firmware update image. This allows a remote attacker to gain root access to the system.
References
Link | Resource |
---|---|
https://www.omicronenergy.com/en/support/product-security/ | Vendor Advisory |
https://www.omicronenergy.com/fileadmin/user_upload/website/files/product-security/osa-5.txt | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
27 Mar 2023, 22:28
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo | |
References | (MISC) https://www.omicronenergy.com/en/support/product-security/ - Vendor Advisory | |
References | (MISC) https://www.omicronenergy.com/fileadmin/user_upload/website/files/product-security/osa-5.txt - Vendor Advisory | |
First Time |
Omicronenergy
Omicronenergy stationscout Omicronenergy stationguard |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:omicronenergy:stationguard:*:*:*:*:*:*:*:* cpe:2.3:a:omicronenergy:stationscout:*:*:*:*:*:*:*:* |
23 Mar 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-23 16:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-28610
Mitre link : CVE-2023-28610
CVE.ORG link : CVE-2023-28610
JSON object : View
Products Affected
omicronenergy
- stationscout
- stationguard
CWE