CVE-2023-29930

HIGH

Genesys TFTP Server - Unauthenticated Remote Code Execution via Configuration Page

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-29930. PoCs published by YSaxon.

AI-analyzed exploit summary This repository contains a Python-based exploit for CVE-2023-29930, targeting a blind file read/write vulnerability in the Genesys (formerly InIn) TFTP provisioning server. The exploit leverages improper path restrictions and default credentials to read or write arbitrary files.

Description

An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote attacker to execute arbitrary code via the login crednetials to the TFTP server configuration page.

Exploits (1)

nomisec WORKING POC 1 stars
by YSaxon · poc
https://github.com/YSaxon/TFTPlunder

This repository contains a Python-based exploit for CVE-2023-29930, targeting a blind file read/write vulnerability in the Genesys (formerly InIn) TFTP provisioning server. The exploit leverages improper path restrictions and default credentials to read or write arbitrary files.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Genesys TFTP provisioning server (all known versions)
Auth required
Prerequisites: Network access to the TFTP server · Valid credentials (often default)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 8.8
EPSS 0.0201
EPSS Percentile 78.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-434
Status published
Products (1)
genesys/tftp_server
Published May 10, 2023
Tracked Since Feb 18, 2026