CVE-2023-43268 — HIGH (8.8)

Vulnerability Description

Deyue Remote Vehicle Management System v1.1 was discovered to contain a deserialization vulnerability.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Deyue Remote Vehicle Management System Project	Deyue Remote Vehicle Management System	1.1

Related Weaknesses (CWE)

CWE-502

References

https://gist.github.com/Fliggyaaa/5517fdd59853cd81724b19d2f29c6760Third Party Advisory
https://github.com/Fliggyaaa/DeYue-remote-vehicle-management-systemExploit
https://hzya.anlu169.com/ms/loginProduct
https://gist.github.com/Fliggyaaa/5517fdd59853cd81724b19d2f29c6760Third Party Advisory
https://github.com/Fliggyaaa/DeYue-remote-vehicle-management-systemExploit
https://hzya.anlu169.com/ms/loginProduct

FAQ

What is CVE-2023-43268?

CVE-2023-43268 is a vulnerability with a CVSS score of 8.8 (HIGH). Deyue Remote Vehicle Management System v1.1 was discovered to contain a deserialization vulnerability.

How severe is CVE-2023-43268?

CVE-2023-43268 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-43268?

Check the references section above for vendor advisories and patch information. Affected products include: Deyue Remote Vehicle Management System Project Deyue Remote Vehicle Management System.