Vulnerability Description
White Rabbit Switch contains a vulnerability which makes it possible for an attacker to perform system commands under the context of the web application (the default installation makes the webserver run as the root user).
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Home.Cern | White Rabbit Switch Firmware | <= 6.0.1 |
| Home.Cern | White Rabbit Switch | - |
Related Weaknesses (CWE)
References
- https://csirt.divd.nl/CVE-2023-22581/Broken Link
- https://csirt.divd.nl/DIVD-2022-00068/Broken Link
- https://vuldb.com/?id.227269Third Party Advisory
- https://csirt.divd.nl/CVE-2023-22581/Broken Link
- https://csirt.divd.nl/DIVD-2022-00068/Broken Link
FAQ
What is CVE-2023-22581?
CVE-2023-22581 is a vulnerability with a CVSS score of 9.8 (CRITICAL). White Rabbit Switch contains a vulnerability which makes it possible for an attacker to perform system commands under the context of the web application (the default installation makes the webserver r...
How severe is CVE-2023-22581?
CVE-2023-22581 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-22581?
Check the references section above for vendor advisories and patch information. Affected products include: Home.Cern White Rabbit Switch Firmware, Home.Cern White Rabbit Switch.