CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-6259

Insufficiently Protected Credentials, : Improper Access Control vulnerability in Brivo ACS100, ACS300 allows Password Recovery Exploitation, Bypassing Physical Security.This issue affects ACS100, ACS300: from 5.2.4 before 6.2.4.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.7%

CVSS Severity

CVSS v3 Score 7.1

References

https://sra.io/advisories/
https://support.brivo.com/l/en/article/g82txdwepa-brivo-firmware-release-notes#brivo_firmware_release_6_2_4_3
https://sra.io/advisories/
https://support.brivo.com/l/en/article/g82txdwepa-brivo-firmware-release-notes#brivo_firmware_release_6_2_4_3

Products affected by CVE-2023-6259

Brivo » Acs100 » Version: N/A

cpe:2.3:h:brivo:acs100:-
Brivo » Acs300 » Version: N/A

cpe:2.3:h:brivo:acs300:-
Brivo » Acs100 Firmware » Version: 5.2.4

cpe:2.3:o:brivo:acs100_firmware:5.2.4
Brivo » Acs100 Firmware » Version: 6.2.4

cpe:2.3:o:brivo:acs100_firmware:6.2.4
Brivo » Acs100 Firmware » Version: 6.2.4.1

cpe:2.3:o:brivo:acs100_firmware:6.2.4.1
Brivo » Acs100 Firmware » Version: 6.2.4.2

cpe:2.3:o:brivo:acs100_firmware:6.2.4.2
Brivo » Acs300 Firmware » Version: 5.2.4

cpe:2.3:o:brivo:acs300_firmware:5.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-6259

Products

Pricing

Contact Us