CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-48253

The vulnerability allows a remote authenticated attacker to read or update arbitrary content of the authentication database via a crafted HTTP request. By abusing this vulnerability it is possible to exfiltrate other users’ password hashes or update them with arbitrary values and access their accounts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.2%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2023-48253

Bosch » Nexo Cordless Nutrunner Nxa011s-36v-B (0608842012) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v-b_(0608842012):-
Bosch » Nexo Cordless Nutrunner Nxa011s-36v (0608842011) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v_(0608842011):-
Bosch » Nexo Cordless Nutrunner Nxa015s-36v-B (0608842006) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v-b_(0608842006):-
Bosch » Nexo Cordless Nutrunner Nxa015s-36v (0608842001) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v_(0608842001):-
Bosch » Nexo Cordless Nutrunner Nxa030s-36v-B (0608842007) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v-b_(0608842007):-
Bosch » Nexo Cordless Nutrunner Nxa030s-36v (0608842002) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v_(0608842002):-
Bosch » Nexo Cordless Nutrunner Nxa050s-36v-B (0608842008) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v-b_(0608842008):-
Bosch » Nexo Cordless Nutrunner Nxa050s-36v (0608842003) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v_(0608842003):-
Bosch » Nexo Cordless Nutrunner Nxa065s-36v-B (0608842014) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa065s-36v-b_(0608842014):-
Bosch » Nexo Cordless Nutrunner Nxa065s-36v (0608842013) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa065s-36v_(0608842013):-
Bosch » Nexo Cordless Nutrunner Nxp012qd-36v-B (0608842010) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxp012qd-36v-b_(0608842010):-
Bosch » Nexo Cordless Nutrunner Nxp012qd-36v (0608842005) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxp012qd-36v_(0608842005):-
Bosch » Nexo Cordless Nutrunner Nxv012t-36v-B (0608842016) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxv012t-36v-b_(0608842016):-
Bosch » Nexo Cordless Nutrunner Nxv012t-36v (0608842015) » Version: N/A

cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxv012t-36v_(0608842015):-
Bosch » Nexo Special Cordless Nutrunner (0608pe2272) » Version: N/A

cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_(0608pe2272):-
Bosch » Nexo Special Cordless Nutrunner (0608pe2301) » Version: N/A

cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_(0608pe2301):-
Bosch » Nexo Special Cordless Nutrunner (0608pe2514) » Version: N/A

cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_(0608pe2514):-
Bosch » Nexo Special Cordless Nutrunner (0608pe2515) » Version: N/A

cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_(0608pe2515):-
Bosch » Nexo Special Cordless Nutrunner (0608pe2666) » Version: N/A

cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_(0608pe2666):-
Bosch » Nexo Special Cordless Nutrunner (0608pe2673) » Version: N/A

cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_(0608pe2673):-
Bosch » Nexo-Os » Version: 1000

cpe:2.3:o:bosch:nexo-os:1000
Bosch » Nexo-Os » Version: 1500-sp2

cpe:2.3:o:bosch:nexo-os:1500-sp2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-48253

Products

Pricing

Contact Us