Rewterz Threat Advisory – CVE-2023-28767 – Multiple Zyxel Devices Vulnerability
July 21, 2023Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs
July 21, 2023Rewterz Threat Advisory – CVE-2023-28767 – Multiple Zyxel Devices Vulnerability
July 21, 2023Rewterz Threat Alert – APT Group Gamaredon aka Shuckworm – Active IOCs
July 21, 2023Severity
High
Analysis Summary
CVE-2023-2913
Rockwell Automation ThinManager ThinServer could allow a remote attacker to traverse directories on the system, caused by improper validation of user request by the API feature in the HTTPS Server Settings. An attacker could send a specially crafted URL request containing “dot dot” sequences (/../) to view arbitrary files on the system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-2913
Affected Vendors
Rockwell Automation
Affected Products
- Rockwell Automation ThinManager ThinServer
Remediation
Refer to Rockwell Automation Advisory for patch, upgrade or suggested workaround information.