CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-28712

Osprey Pump Controller version 1.01 contains an unauthenticated command injection vulnerability that could allow system access with www-data permissions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.4%

CVSS Severity

CVSS v3 Score 8.2

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-082-06
https://www.cisa.gov/news-events/ics-advisories/icsa-23-082-06

Products affected by CVE-2023-28712

Propumpservice » Osprey Pump Controller » Version: N/A

cpe:2.3:h:propumpservice:osprey_pump_controller:-
Propumpservice » Osprey Pump Controller Firmware » Version: 1.01

cpe:2.3:o:propumpservice:osprey_pump_controller_firmware:1.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-28712

Products

Pricing

Contact Us