Vulnerability Details CVE-2023-42336
An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote attacker to execute arbitrary code and obtain sensitive information via the password parameter in the /etc/shadow.sample component.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.024
EPSS Ranking 84.3%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-42336
-
cpe:2.3:h:netis-systems:wf2409e:v4
-
cpe:2.3:o:netis-systems:wf2409e_firmware:1.0.1.705