Vulnerabilities > CVE-2023-46661 - Unspecified vulnerability in Sielco products

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

critical

NVD

Published: 2023-10-26

Updated: 2023-11-06

Summary

Sielco PolyEco1000 is vulnerable to an attacker escalating their privileges by modifying passwords in POST requests.

Part	Description	Count
OS	Sielco Sielco Polyeco500 Firmware 1.7.0 Sielco Polyeco500 Firmware 10.16 Sielco Polyeco300 Firmware 2.0.0 Sielco Polyeco300 Firmware 2.0.2 Sielco Polyeco300 Firmware 10.19 Sielco Polyeco1000 Firmware 1.9.3 Sielco Polyeco1000 Firmware 1.9.4 Sielco Polyeco1000 Firmware 2.0.6 Sielco Polyeco1000 Firmware 10.19	9
Hardware	Sielco Sielco Polyeco500 - Sielco Polyeco300 - Sielco Polyeco1000 -	3