CVE-2023-29116

Summary

Under certain conditions, through a request directed to the Waybox Enel X web management application, information like Waybox OS version or service configuration details could be obtained.

Affected Software

VendorProductVersion RangeStatus
Enel XJuiceBox Pro 3.0 22kW Cellular0 < 2.1.1.0_JB3VU096Aaffected

Weaknesses

  • CWE-200: CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References