Rewterz Threat Advisory -CVE-2023-26513 – Apache Sling Resource Merger Vulnerability
March 21, 2023Rewterz Threat Advisory -STOP (DJVU) Ransomware – Active IOCs
March 21, 2023Rewterz Threat Advisory -CVE-2023-26513 – Apache Sling Resource Merger Vulnerability
March 21, 2023Rewterz Threat Advisory -STOP (DJVU) Ransomware – Active IOCs
March 21, 2023Severity
Medium
Analysis Summary
CVE-2023-28368
TP-Link T2600G-28SQ could allow a remote attacker to obtain sensitive information, caused by a flaw related to the SSH host keys. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-28368
Affected Vendors
TP-Link
Affected Products
- TP-Link T2600G-28SQ
Remediation
Upgrade to the latest version of T2600G-28SQ, available from the TP-Link Website.