CVE-2023-39167

Summary

In SENEC Storage Box V1,V2 and V3 an unauthenticated remote attacker can obtain the devices' logfiles that contain sensitive data.

Affected Software

VendorProductVersion RangeStatus
SENECStorage Box V1all (until 19.06.2023)affected
SENECStorage Box V2all (until 19.06.2023)affected
SENECStorage Box V3all (until 19.06.2023)affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CVE Program Container

Additional References

References