COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2023-33468

CVE-2023-33468

Severity
critical
Source
NVD · cve
Published
2023-08-09
CVSS
9.1
Reference
https://nvd.nist.gov/vuln/detail/CVE-2023-33468
shame 35/100

KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a vulnerability that enables remote manipulation of the device. This vulnerability involves extracting the connection confirmation code remotely, bypassing the need to obtain it directly fr

Players implicated

kramerav · vendorvia connect2 · productvia connect2 firmware · productvia go2 · productvia go2 firmware · product

Description

KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a vulnerability that enables remote manipulation of the device. This vulnerability involves extracting the connection confirmation code remotely, bypassing the need to obtain it directly from the physical screen.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.