Rewterz Threat Advisory – CVE-2023-26208 – Fortinet FortiAuthenticator Vulnerability
January 5, 2024Rewterz Threat Update – Russian Threat Actors Breached Ukrainian Telecom Operator and Wiped Thousands of Systems
January 5, 2024Rewterz Threat Advisory – CVE-2023-26208 – Fortinet FortiAuthenticator Vulnerability
January 5, 2024Rewterz Threat Update – Russian Threat Actors Breached Ukrainian Telecom Operator and Wiped Thousands of Systems
January 5, 2024Severity
High
Analysis Summary
CVE-2023-43960
D-Link DPH-400SE FRU could allow a remote authenticated attacker to gain elevated privileges on the system, caused by a flaw in User Modify function in the Maintenance/Access function component. By sending a specially crafted request, an attacker could exploit this vulnerability to escalate privileges.
Impact
- Privileges Escalation
Indicators Of Compromise
CVE
- CVE-2023-43960
Affected Vendors
D-Link
Affected Products
- D-Link DPH-400SE FRU 2.2.15.8
Remediation
Refer to D-Link Website for patch, upgrade, or suggested workaround information.