Vulnerabilities > CVE-2023-34437 - Unspecified vulnerability in Bakerhughes Bentley Nevada 3500 System Firmware 5.0.5

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

bakerhughes

NVD

Published: 2023-10-19

Updated: 2024-11-21

Summary

Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05 contains a vulnerability in their password retrieval functionality which could allow an attacker to access passwords stored on the device.

Vulnerable Configurations

Part	Description	Count
OS	Bakerhughes Bakerhughes Bentley Nevada 3500 System Firmware 5.0.5	1
Hardware	Bakerhughes Bakerhughes Bentley Nevada 3500 System -	1

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-269-05
https://www.cisa.gov/news-events/ics-advisories/icsa-23-269-05