COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2023-51947

CVE-2023-51947

Severity
critical
Source
NVD · cve
Published
2024-01-19
CVSS
9.1
Reference
https://nvd.nist.gov/vuln/detail/CVE-2023-51947
shame 35/100

Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication.

Players implicated

actidata · vendoractinas sl 2u-8 rdx · productactinas sl 2u-8 rdx firmware · product

Description

Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.