CVE-2023-47800 - OpenCVE

Natus NeuroWorks and SleepWorks before 8.4 GMA3 utilize a default password of xltek for the Microsoft SQL Server service sa account, allowing a threat actor to perform remote code execution, data exfiltration, or other nefarious actions such as tampering with data or destroying/disrupting MSSQL services.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Natus	Neuroworks Eeg Sleepworks

Configuration 1 [-]

OR	cpe:2.3:a:natus:neuroworks_eeg::::::::
	cpe:2.3:a:natus:neuroworks_eeg:8.4:-::::::
	cpe:2.3:a:natus:sleepworks::::::::
	cpe:2.3:a:natus:sleepworks:8.4:-::::::

References

Link	Resource
https://partner.natus.com/m/7cd3bcca88e446d4/original/NeuroWorks-SleepWorks-Product-Security-Bulletin.pdf	Vendor Advisory
https://www.trustwave.com/hubfs/Web/Library/Advisories_txt/TWSL2023-006.txt	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-11-10T00:00:00

Updated: 2023-11-10T06:16:42.566966

Reserved: 2023-11-10T00:00:00

Link: CVE-2023-47800

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-11-10T07:15:07.910

Modified: 2023-11-23T01:18:44.300

Link: CVE-2023-47800

JSON object: View

Redhat Information

No data.

CWE

CWE-798

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:natus:neuroworks_eeg:*:*:*:*:*:*:*:*", "matchCriteriaId": "3D2416D8-2F56-4622-A883-19FCBEAD1EB6", "versionEndExcluding": "8.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:natus:neuroworks_eeg:8.4:-:*:*:*:*:*:*", "matchCriteriaId": "774297BF-E189-4D00-8D55-054F1BE22628", "vulnerable": true}, {"criteria": "cpe:2.3:a:natus:sleepworks:*:*:*:*:*:*:*:*", "matchCriteriaId": "F6CC7862-0FE1-4FAA-B93A-2998DF2537B9", "versionEndExcluding": "8.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:natus:sleepworks:8.4:-:*:*:*:*:*:*", "matchCriteriaId": "D763E1C3-7A27-4EB6-A3DD-0A4DEE2C68FD", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Natus NeuroWorks and SleepWorks before 8.4 GMA3 utilize a default password of xltek for the Microsoft SQL Server service sa account, allowing a threat actor to perform remote code execution, data exfiltration, or other nefarious actions such as tampering with data or destroying/disrupting MSSQL services."}, {"lang": "es", "value": "Natus NeuroWorks y SleepWorks anteriores a 8.4 GMA3 utilizan una contrase\u00f1a predeterminada de xltek para la cuenta sa del servicio Microsoft SQL Server, lo que permite a un actor de amenazas realizar ejecuci\u00f3n remota de c\u00f3digo, exfiltraci\u00f3n de datos u otras acciones nefastas como manipulaci\u00f3n de datos o destrucci\u00f3n/interrupci\u00f3n de servicios MSSQL."}], "id": "CVE-2023-47800", "lastModified": "2023-11-23T01:18:44.300", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-11-10T07:15:07.910", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://partner.natus.com/m/7cd3bcca88e446d4/original/NeuroWorks-SleepWorks-Product-Security-Bulletin.pdf"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.trustwave.com/hubfs/Web/Library/Advisories_txt/TWSL2023-006.txt"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-798"}], "source": "nvd@nist.gov", "type": "Primary"}]}