CVE-2023-41256

Summary

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication bypass that could allow an unauthorized attacker to obtain user access.

Affected Software

VendorProductVersion RangeStatus
Dover Fueling SolutionsMAGLINK LX Web Console Configuration2.5.1affected
Dover Fueling SolutionsMAGLINK LX Web Console Configuration2.5.2affected
Dover Fueling SolutionsMAGLINK LX Web Console Configuration2.5.3affected
Dover Fueling SolutionsMAGLINK LX Web Console Configuration2.6.1affected
Dover Fueling SolutionsMAGLINK LX Web Console Configuration2.11affected
Dover Fueling SolutionsMAGLINK LX Web Console Configuration3.0affected
Dover Fueling SolutionsMAGLINK LX Web Console Configuration3.2affected
Dover Fueling SolutionsMAGLINK LX Web Console Configuration3.3affected

Weaknesses

  • CWE-288: CWE-288 Authentication Bypass Using an Alternate Path or Channel

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References