Security Advisory

CVE-2023-33274

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-12 00:00:00

Last updated 2024-11-07 17:06:31

Assigner mitre

State PUBLISHED

Description

The authentication mechanism in PowerShield SNMP Web Pro 1.1 contains a vulnerability that allows unauthenticated users to directly access Common Gateway Interface (CGI) scripts without proper identification or authorization. This vulnerability arises from a lack of proper cookie verification and affects all instances of SNMP Web Pro 1.1 without HTTP Digest authentication enabled, regardless of the password used for the web interface.

← Browse all CVEs View on cve.org ↗