Security Advisory

CVE-2023-23546

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-06 14:53:30
Last updated 2024-08-02 10:35:33
Assigner talos
State PUBLISHED

Description

A misconfiguration vulnerability exists in the urvpn_client functionality of Milesight UR32L v32.3.0.5. A specially-crafted man-in-the-middle attack can lead to increased privileges. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.