Vulnerability Description
Denial-of-service vulnerability in the web server of the Eaton SMP Gateway allows attacker to potentially force an unexpected restart of the automation platform, impacting the availability of the product. In rare situations, the issue could cause the SMP device to restart in Safe Mode or Max Safe Mode. When in Max Safe Mode, the product is not vulnerable anymore.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Eaton | Smp Sg-4260 Firmware | >= 8.0, < 8.0r9 |
| Eaton | Smp Sg-4260 | - |
| Eaton | Smp Sg-4250 Firmware | >= 8.0, < 8.0r9 |
| Eaton | Smp Sg-4250 | - |
| Eaton | Smp 4\/Dp Firmware | >= 8.0, < 8.0r9 |
| Eaton | Smp 4\/Dp | - |
| Eaton | Smp 16 Firmware | >= 8.0, < 8.0r9 |
| Eaton | Smp 16 | - |
Related Weaknesses (CWE)
References
- https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/secuVendor Advisory
- https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/secuVendor Advisory
FAQ
What is CVE-2023-43775?
CVE-2023-43775 is a vulnerability with a CVSS score of 4.7 (MEDIUM). Denial-of-service vulnerability in the web server of the Eaton SMP Gateway allows attacker to potentially force an unexpected restart of the automation platform, impacting the availability of the pr...
How severe is CVE-2023-43775?
CVE-2023-43775 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-43775?
Check the references section above for vendor advisories and patch information. Affected products include: Eaton Smp Sg-4260 Firmware, Eaton Smp Sg-4260, Eaton Smp Sg-4250 Firmware, Eaton Smp Sg-4250, Eaton Smp 4\/Dp Firmware.