CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34392

A Missing Authentication for Critical Function vulnerability in the Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator could allow an attacker to run arbitrary commands on managed devices by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5037 SEL Grid Configurator: before 4.5.0.20.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.5%

CVSS Severity

CVSS v3 Score 8.2

References

https://selinc.com/support/security-notifications/external-reports/
https://www.nozominetworks.com/blog/
https://selinc.com/support/security-notifications/external-reports/
https://www.nozominetworks.com/blog/

Products affected by CVE-2023-34392

Selinc » Sel-5037 Sel Grid Configurator » Version: N/A

cpe:2.3:a:selinc:sel-5037_sel_grid_configurator:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34392

Products

Pricing

Contact Us