CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-49262 – Buffer overflow vulnerability in Cookie authentication field
https://notcve.org/view.php?id=CVE-2023-49262
The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session. El mecanismo de autenticación se puede omitir desbordando el valor del campo "authentication" de cookies, siempre que haya una sesión de usuario activa. • https://cert.pl/en/posts/2024/01/CVE-2023-49253 https://cert.pl/posts/2024/01/CVE-2023-49253 • CWE-190: Integer Overflow or Wraparound CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-49261 – Sensitive authentication-related value accessible publicly
https://notcve.org/view.php?id=CVE-2023-49261
The "tokenKey" value used in user authorization is visible in the HTML source of the login page. El valor "tokenKey" utilizado en la autorización del usuario es visible en el código fuente HTML de la página de inicio de sesión. • https://cert.pl/en/posts/2024/01/CVE-2023-49253 https://cert.pl/posts/2024/01/CVE-2023-49253 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-201: Insertion of Sensitive Information Into Sent Data •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2023-49260 – Stored cross-site scripting vulnerability
https://notcve.org/view.php?id=CVE-2023-49260
An XSS attack can be performed by changing the MOTD banner and pointing the victim to the "terminal_tool.cgi" path. It can be used together with the vulnerability CVE-2023-49255. Se puede realizar un ataque XSS cambiando el banner MOTD y señalando a la víctima la ruta "terminal_tool.cgi". Se puede utilizar junto con la vulnerabilidad CVE-2023-49255. • https://cert.pl/en/posts/2024/01/CVE-2023-49253 https://cert.pl/posts/2024/01/CVE-2023-49253 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-49259 – Bruteforcing authentication cookie for a given user
https://notcve.org/view.php?id=CVE-2023-49259
The authentication cookies are generated using an algorithm based on the username, hardcoded secret and the up-time, and can be guessed in a reasonable time. Las cookies de autenticación se generan utilizando un algoritmo basado en el nombre de usuario, el secreto codificado y el tiempo de actividad, y pueden adivinarse en un tiempo razonable. • https://cert.pl/en/posts/2024/01/CVE-2023-49253 https://cert.pl/posts/2024/01/CVE-2023-49253 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm CWE-341: Predictable from Observable State •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2023-49258 – Reflected cross-site scripting vulnerability
https://notcve.org/view.php?id=CVE-2023-49258
User browser may be forced to execute JavaScript and pass the authentication cookie to the attacker leveraging the XSS vulnerability located at "/gui/terminal_tool.cgi" in the "data" parameter. El navegador del usuario puede verse obligado a ejecutar JavaScript y pasar la cookie de autenticación al atacante aprovechando la vulnerabilidad XSS ubicada en "/gui/terminal_tool.cgi" en el parámetro "data". • https://cert.pl/en/posts/2024/01/CVE-2023-49253 https://cert.pl/posts/2024/01/CVE-2023-49253 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •