Vulnerabilities > CVE-2023-31241 - Unspecified vulnerability in Snapone Orvc

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

critical

NVD

Published: 2023-05-22

Updated: 2023-05-31

Summary

Snap One OvrC cloud servers contain a route an attacker can use to bypass requirements and claim devices outright.

Part	Description	Count
Application	Snapone Snapone Orvc *	1
Hardware	Control4 Control4 CA 1 - Control4 CA 10 - Control4 EA 1 - Control4 EA 3 - Control4 EA 5 -	5
Hardware	Snapone Snapone AN 110 RT 2L1W - Snapone AN 110 RT 2L1W Wifi - Snapone AN 310 RT 4L2W - Snapone Ovrc 300 PRO - Snapone Pakedge RK 1 - Snapone Pakedge RT 3100 - Snapone Pakedge WR 1 -	7