CVE-2023-3259

high-risk
Published 2023-08-14

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to authentication bypass. By manipulating the IP address field in the "iBootPduSiteAuth" cookie, a malicious agent can direct the device to connect to a rouge database.Successful exploitation allows the malicious agent to take actions with administrator privileges including, but not limited to, manipulating power levels, modifying user accounts, and exporting confidential user information

Do I need to act?

-
0.15% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (20)

Iboot-Pdu4A-C10 Firmware
Iboot-Pdu4A-C20 Firmware
Iboot-Pdu4A-N15 Firmware
Iboot-Pdu4A-N20 Firmware
Iboot-Pdu4-C20 Firmware
Iboot-Pdu4-N20 Firmware
Iboot-Pdu4Sa-C10 Firmware
Iboot-Pdu4Sa-C20 Firmware
Iboot-Pdu4Sa-N15 Firmware
Iboot-Pdu4Sa-N20 Firmware
Iboot-Pdu8A-2C10 Firmware
Iboot-Pdu8A-2C20 Firmware
Iboot-Pdu8A-2N15 Firmware
Iboot-Pdu8A-2N20 Firmware
Iboot-Pdu8A-C10 Firmware
Iboot-Pdu8A-C20 Firmware
Iboot-Pdu8A-N15 Firmware
Iboot-Pdu8A-N20 Firmware
Iboot-Pdu8Sa-2N15 Firmware
Iboot-Pdu8Sa-C10 Firmware

Affected Vendors

Dataprobe

References (2)

Vendor Advisory https://www.trellix.com/en-us/about/newsroom/stories/research/the-threat-lurking...
Vendor Advisory https://www.trellix.com/en-us/about/newsroom/stories/research/the-threat-lurking...
53
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 1/34 · Minimal
Exposure 20/34 · Moderate