CVE-2023-2611

Summary

Advantech R-SeeNet versions 2.4.22

is installed with a hidden root-level user that is not available in the users list. This hidden user has a password that cannot be changed by users.

Affected Software

VendorProductVersion RangeStatus
AdvantechR-SeeNet0 <= 2.4.22affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References