CVE-2023-22620

HIGH EXPLOITED NUCLEI

Securepoint Unified Threat Management - Incorrect Authorization

Title source: rule

Description

An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows sessionid information disclosure via an invalid authentication attempt. This can afterwards be used to bypass the device's authentication and get access to the administrative interface.

Nuclei Templates (1)

SecurePoint UTM 12.x Session ID Leak

HIGHVERIFIEDby DhiyaneshDK

Shodan: title:"Securepoint UTM" || http.title:"securepoint utm"

FOFA: title="securepoint utm"

References (4)

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/171924/SecurePoint-UTM-12.x-Session-ID-Leak.html

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2023/Apr/7

[Exploit, Third Party Advisory] https://github.com/MrTuxracer/advisories/blob/master/CVEs/CVE-2023-22620.txt

View Exploit ZIP pw:eip

[Not Applicable] https://rcesecurity.com

Scores

CVSS v3 7.5

EPSS 0.8422

EPSS Percentile 99.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-12-04

CWE

CWE-863

Status published

Products (1)

securepoint/unified_threat_management 12.2.3.1 - 12.2.5.1

Published Apr 12, 2023

Tracked Since Feb 18, 2026