CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34441

Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05 contains a cleartext transmission vulnerability which could allow an attacker to steal the authentication secret from communication traffic to the device and reuse it for arbitrary requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.0%

CVSS Severity

CVSS v3 Score 6.8

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-269-05
https://www.cisa.gov/news-events/ics-advisories/icsa-23-269-05

Products affected by CVE-2023-34441

Bakerhughes » Bentley Nevada 3500 System » Version: N/A

cpe:2.3:h:bakerhughes:bentley_nevada_3500_system:-
Bakerhughes » Bentley Nevada 3500 System Firmware » Version: 5.0.5

cpe:2.3:o:bakerhughes:bentley_nevada_3500_system_firmware:5.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34441

Products

Pricing

Contact Us