Security Advisory

CVE-2023-42143

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-23 00:00:00
Last updated 2025-05-30 14:20:57
Assigner mitre
State PUBLISHED

Description

Missing Integrity Check in Shelly TRV 20220811-152343/v2.1.8@5afc928c allows malicious users to create a backdoor by redirecting the device to an attacker-controlled machine which serves the manipulated firmware file. The device is updated with the manipulated firmware.