← back
CVE-2023-43847

CVE-2023-43847

CVSS 5.3 MEDIUMEPSS 0.6%CWE-284
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.3EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
28 May 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Incorrect access control in the outlet control function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to control all the outlets as if they were the administrator via HTTP POST requests.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
n/a · n/a