Vulnerability Details CVE-2023-22620
An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows sessionid information disclosure via an invalid authentication attempt. This can afterwards be used to bypass the device's authentication and get access to the administrative interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.783
EPSS Ranking 99.0%
CVSS Severity
CVSS v3 Score 7.5
References
- http://packetstormsecurity.com/files/171924/SecurePoint-UTM-12.x-Session-ID-Leak.html
- http://seclists.org/fulldisclosure/2023/Apr/7
- https://github.com/MrTuxracer/advisories/blob/master/CVEs/CVE-2023-22620.txt
- https://rcesecurity.com
- http://packetstormsecurity.com/files/171924/SecurePoint-UTM-12.x-Session-ID-Leak.html
- http://seclists.org/fulldisclosure/2023/Apr/7
- https://github.com/MrTuxracer/advisories/blob/master/CVEs/CVE-2023-22620.txt
- https://rcesecurity.com
Products affected by CVE-2023-22620
-
cpe:2.3:o:securepoint:unified_threat_management:12.2.3.1
-
cpe:2.3:o:securepoint:unified_threat_management:12.2.3.2
-
cpe:2.3:o:securepoint:unified_threat_management:12.2.3.3
-
cpe:2.3:o:securepoint:unified_threat_management:12.2.3.4
-
cpe:2.3:o:securepoint:unified_threat_management:12.2.4
-
cpe:2.3:o:securepoint:unified_threat_management:12.2.4.1
-
cpe:2.3:o:securepoint:unified_threat_management:12.2.5