CVE-2023-3768
Summary
| CVE | CVE-2023-3768 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-10-02 11:15:00 UTC |
| Updated | 2023-10-06 14:02:00 UTC |
| Description | Incorrect data input validation vulnerability, which could allow an attacker with access to the network to implement fuzzing techniques that would allow him to gain knowledge about specially crafted packets that would create a DoS condition through the MMS protocol when initiating communication, achieving a complete system reboot of the device and its services. |
Risk And Classification
Problem Types: CWE-20
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Ingeteam | Ingepac Da3451 | - | All | All | All |
| Operating System | Ingeteam | Ingepac Da3451 Firmware | - | All | All | All |
| Hardware | Ingeteam | Ingepac Ef Md | - | All | All | All |
| Operating System | Ingeteam | Ingepac Ef Md Firmware | - | All | All | All |
| Hardware | Ingeteam | Ingepac Fc5066 | - | All | All | All |
| Operating System | Ingeteam | Ingepac Fc5066 Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Multiple Vulnerabilities Ingeteam Products | INCIBE-CERT | INCIBE | MISC | www.incibe.es | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.