CVE-2023-39169

Summary

The affected devices use publicly available default credentials with administrative privileges.

Affected Software

VendorProductVersion RangeStatus
SENECStorage Box V1before Nov. 2023affected
SENECStorage Box V2before Nov. 2023affected
SENECStorage Box V3before Nov. 2023affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: total

References