CVE-2023-5500
HIGHfrauscher diagnostic system 102 2.10.0-2.10.2 - Authenticated Remote Code Execution
Title source: llmDescription
This vulnerability allows an remote attacker with low privileges to misuse Improper Control of Generation of Code ('Code Injection') to gain full control of the affected device.
References (1)
Core 1
Core References
Third Party Advisory
https://cert.vde.com/en/advisories/VDE-2023-049/
Scores
CVSS v3
8.8
EPSS
0.0096
EPSS Percentile
57.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-94
Status
published
Products (1)
frauscher/frauscher_diagnostic_system_102
2.10.0 - 2.10.2 (2 CPE variants)
Published
Dec 11, 2023
Tracked Since
Feb 18, 2026