CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-43478

fake_upload.cgi on the Telstra Smart Modem Gen 2 (Arcadyan LH1000), firmware versions < 0.18.15r, allows unauthenticated attackers to upload firmware images and configuration backups, which could allow them to alter the firmware or the configuration on the device, ultimately leading to code execution as root.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.041

EPSS Ranking 88.3%

CVSS Severity

CVSS v3 Score 8.8

References

https://www.tenable.com/security/research/tra-2023-19
https://www.tenable.com/security/research/tra-2023-19

Products affected by CVE-2023-43478

Telstra » Arcadyan Lh1000 » Version: N/A

cpe:2.3:h:telstra:arcadyan_lh1000:-
Telstra » Arcadyan Lh1000 Firmware » Version: N/A

cpe:2.3:o:telstra:arcadyan_lh1000_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-43478

Products

Pricing

Contact Us