Vulnerabilities

CVE-2023-48253

by Fred · 10/01/2024

The vulnerability allows a remote authenticated attacker to read or update arbitrary content of the authentication database via a crafted HTTP request. By abusing this vulnerability it is possible to exfiltrate other users’ password hashes or update them with arbitrary values and access their accounts.

Date published : 2024-01-10

https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html

Similar

Tags: Cybersecurity Alert