CVE-2023-43845

CRITICAL

Aten PE6208 <2.3.228-2.4.232 - Privilege Escalation

Title source: llm

Description

Aten PE6208 2.3.228 and 2.4.232 have default credentials for the privileged telnet account. The user is not asked to change the credentials after first login. If not changed, attackers can log in to the telnet console and gain administrator privileges.

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://github.com/setersora/pe6208

View Exploit ZIP pw:eip

Scores

CVSS v3 9.8

EPSS 0.0053

EPSS Percentile 40.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-269

Status published

Products (1)

aten/pe6208_firmware 2.3.228 - 2.4.239

Published May 28, 2024

Tracked Since Feb 18, 2026