What is CVE-2023-3263?

CVE-2023-3263 is a high-severity vulnerability in Dataprobe Iboot Pdu, classified under CWE-289. CVSS score: 7.5/10. Published 2023-08-14.

How severe is CVE-2023-3263?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Dataprobe Iboot Pdu

CVE-2023-3263

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to authentication bypass in the REST API due to the mishandling of special characters when parsing credentials.Successful exploitation allows the malic…

EPSS: 0.001 (23.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Dataprobe Iboot Pdu — versions 1.43.03312023

Weakness classification (CWE)

CWE-289

References

www.trellix.com/en-us/about/newsroom/stories/research/the-threat-lurking-in-dat…

Frequently asked questions

What is CVE-2023-3263?: CVE-2023-3263 is a high-severity vulnerability in Dataprobe Iboot Pdu, classified under CWE-289. CVSS score: 7.5/10. Published 2023-08-14.
How severe is CVE-2023-3263?: High severity. CVSS v3 base score is 7.5 out of 10.