CVE-2023-2758

Summary

A denial of service vulnerability exists in Contec CONPROSYS HMI System versions 3.5.2 and prior. When there is a time-zone mismatch in certain configuration files, a remote, unauthenticated attacker may deny logins for an extended period of time.

Affected Software

VendorProductVersion RangeStatus
ContecCONPROSYS HMI System0 <= 3.5.2affected

Weaknesses

  • CWE-799: CWE-799

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References