CVE-2023-7163
Last modified
CVE-2023-7163 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A security issue exists in D-Link D-View 8 v2.0.2.89 and prior that could allow an attacker to manipulate the probe inventory of the D-View service. This could result in the disclosure of information from other probes, denial of service conditions due to the probe inventory becoming full, or the execution of tasks on other probes. . EPSS estimates a 1.67% chance of exploitation in the next 30 days.
Description
A security issue exists in D-Link D-View 8 v2.0.2.89 and prior that could allow an attacker to manipulate the probe inventory of the D-View service. This could result in the disclosure of information from other probes, denial of service conditions due to the probe inventory becoming full, or the execution of tasks on other probes.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dlink | D-View 8 | 2.0.2.89 |
References
- https://tenable.com/security/research/tra-2023-43Exploit, Third Party Advisory
- https://tenable.com/security/research/tra-2023-43Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-7163?
How severe is CVE-2023-7163?
How do I fix CVE-2023-7163?
Are you affected by CVE-2023-7163?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST