A CWE-494 Download of Code Without Integrity Check vulnerability exists that could allow modified firmware to be uploaded when an authorized admin user begins a firmware update procedure which could result in full control over the device.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: schneider

Published: 2023-11-15T03:30:09.897Z

Updated: 2024-08-02T08:14:25.140Z

Reserved: 2023-11-07T10:54:44.542Z

Link: CVE-2023-5984

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-11-15T04:15:19.043

Modified: 2024-11-21T08:42:55.290

Link: CVE-2023-5984

cve-icon Redhat

No data.