Security Advisory

CVE-2023-2759

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-17 06:14:15

Last updated 2024-10-30 14:55:16

Assigner CERTVDE

State PUBLISHED

Description

A hidden API exists in TapHomes core platform before version 2023.2 that allows an authenticated, low privileged user to change passwords of other users without any prior knowledge. The attacker may gain full access to the device by using this vulnerability.

← Browse all CVEs View on cve.org ↗