Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
NA

CVE-2023-5376

Published: 09/01/2024 Updated: 17/01/2024
CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9
VMScore: 0

Vulnerability Summary

An Improper Authentication vulnerability in Korenix JetNet TFTP allows abuse of this service. This issue affects JetNet devices older than firmware version 2024/01.

Vulnerable Product Search on Vulmon Subscribe to Product

korenix jetnet 5310g firmware 2.6

korenix jetnet 4508 firmware 2.3

korenix jetnet 4508i-w firmware 1.3

korenix jetnet 4508-w firmware 2.3

korenix jetnet 4508if-s firmware 1.3

korenix jetnet 4508if-m firmware 1.3

korenix jetnet 4508if-sw firmware 1.3

korenix jetnet 4508if-mw firmware 1.3

korenix jetnet 4508f-m firmware 2.3

korenix jetnet 4508f-s firmware 2.3

korenix jetnet 4508f-mw firmware 2.3

korenix jetnet 4508f-sw firmware 2.3

korenix jetnet 5620g-4c firmware 1.1

korenix jetnet 5612gp-4f firmware 1.2

korenix jetnet 5612g-4f firmware 1.2

korenix jetnet 5728g-24p-ac-2dc-us firmware 2.1

korenix jetnet 5728g-24p-ac-2dc-eu firmware 2.1

korenix jetnet 6528gf-2ac-eu firmware 1.0

korenix jetnet 6528gf-2ac-us firmware 1.0

korenix jetnet 6528gf-2dc24 firmware 1.0

korenix jetnet 6528gf-2dc48 firmware 1.0

korenix jetnet 6528gf-ac-eu firmware 1.0

korenix jetnet 6528gf-ac-us firmware 1.0

korenix jetnet 6628xp-4f-us firmware 1.1

korenix jetnet 6628x-4f-eu firmware 1.0

korenix jetnet 6728g-24p-ac-2dc-us firmware 1.1

korenix jetnet 6728g-24p-ac-2dc-eu firmware 1.1

korenix jetnet 6828gf-2dc48 firmware 1.0

korenix jetnet 6828gf-2dc24 firmware 1.0

korenix jetnet 6828gf-ac-dc24-us firmware 1.0

korenix jetnet 6828gf-2ac-us firmware 1.0

korenix jetnet 6828gf-ac-us firmware 1.0

korenix jetnet 6828gf-2ac-au firmware 1.0

korenix jetnet 6828gf-ac-dc24-eu firmware 1.0

korenix jetnet 6828gf-2ac-eu firmware 1.0

korenix jetnet 6910g-m12 hvdc firmware 1.0

korenix jetnet 7310g-v2 firmware 1.0

korenix jetnet 7628xp-4f-us firmware 1.0

korenix jetnet 7628xp-4f-us firmware 1.1

korenix jetnet 7628xp-4f-eu firmware 1.0

korenix jetnet 7628xp-4f-eu firmware 1.1

korenix jetnet 7628x-4f-us firmware 1.0

korenix jetnet 7628x-4f-eu firmware 1.0

korenix jetnet 7714g-m12 hvdc firmware 1.0

Exploits

Exploit DB: Korenix JetNet Series Unauthenticated Access
Korenix JetNet Series allows TFTP without authentication and also allows for unauthenticated firmware upgrades ...

Mailing Lists

Full Disclosure: CyberDanube Security Research 20240109-0 | Multiple Vulnerabilities in JetNet Series
CyberDanube Security Research 20240109-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| Korenix JetNet Series vulnerable version| See "Vulnerable versions" fixed version| - CVE number| CVE-2023-5376, CVE-2023-5347 ...

References

CWE-287https://www.beijerelectronics.com/en/support/Help___online?docId=69947https://cyberdanube.com/en/en-multiple-vulnerabilities-in-korenix-jetnet-series/http://seclists.org/fulldisclosure/2024/Jan/11http://packetstormsecurity.com/files/176550/Korenix-JetNet-Series-Unauthenticated-Access.htmlhttps://nvd.nist.govhttps://seclists.org/fulldisclosure/2024/Jan/11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267XML injectionCVE-2024-37673CVE-2024-6266CVE-2024-30078arbitrary CVE-2024-36886CVE-2024-5346template injection
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook