CVE-2023-47573 - OpenCVE

An issue discovered in Relyum RELY-PCIe 22.2.1 devices. The authorization mechanism is not enforced in the web interface, allowing a low-privileged user to execute administrative functions.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Relyum	Rely-pcie Firmware Rely-rec Firmware Rely-rec Rely-pcie

Configuration 1 [-]

AND

cpe:2.3:o:relyum:rely-pcie_firmware:22.2.1:*:*:*:*:*:*:*

cpe:2.3:h:relyum:rely-pcie:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:relyum:rely-rec_firmware:23.1.0:*:*:*:*:*:*:*

cpe:2.3:h:relyum:rely-rec:-:*:*:*:*:*:*:*

References

Link	Resource
https://www.relyum.com/web/support/vulnerability-report/	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-12-13T00:00:00

Updated: 2023-12-13T01:20:05.785471

Reserved: 2023-11-06T00:00:00

Link: CVE-2023-47573

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-12-13T02:15:07.553

Modified: 2023-12-15T19:25:03.390

Link: CVE-2023-47573

JSON object: View

Redhat Information

No data.

CWE

CWE-862