CRITICAL🇵🇱 Wersja polska

CVE-2023-3259

CVSS 9.8v3.1pub. 2023-08-14upd. 2024-11-21

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to authentication bypass. By manipulating the IP address field in the "iBootPduSiteAuth" cookie, a malicious agent can direct the device to connect to a rouge database.Successful exploitation allows the malicious agent to take actions with administrator privileges including, but not limited to, manipulating power levels, modifying user accounts, and exporting confidential user information

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dataprobe Iboot Pdu4a C10

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4a C10 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4a C20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4a C20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4a N15

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4a N15 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4a N20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4a N20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4 C20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4 C20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4 N20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4 N20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4sa C10

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4sa C10 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4sa C20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4sa C20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4sa N15

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4sa N15 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu4sa N20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu4sa N20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu8a 2c10

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu8a 2c10 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu8a 2c20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu8a 2c20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu8a 2n15

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu8a 2n15 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu8a 2n20

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu8a 2n20 Firmware

    OS
    Dataprobe
    < 1.44.0804202
  • Dataprobe Iboot Pdu8a C10

    HW
    Dataprobe
    wszystkie wersje
  • Dataprobe Iboot Pdu8a C10 Firmware

    OS
    Dataprobe
    < 1.44.0804202
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassDeserialization
CWE
References

Related vulnerabilities

CVE-2022-3184CRITICAL9.8ten sam produkt

Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where the device’s existing fir...

CVE-2022-3183CRITICAL9.8ten sam produkt

Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where a specific function does ...

CVE-2023-3261HIGH7.5ten sam produkt

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerabi...

CVE-2023-3260HIGH7.2ten sam produkt

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to command injection v...

CVE-2023-3263HIGH7.5ten sam produkt

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to authentication bypa...