CVE-2023-37220
moderate-risk
Published 2023-09-03
Synel Terminals - CWE-494: Download of Code Without Integrity Check
Do I need to act?
-
0.05% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.2/10
High
NETWORK
/ LOW complexity
Affected Products (20)
Synergy\/A Firmware
Synergy Touch Firmware
Synergy 10 Firmware
Synergy 5 Firmware
Sy-910 Firmware
Synergy\/X Firmware
Sy110 Face Firmware
Bioentry-W2 Firmware
Biolite-N2 Firmware
Bioentry P2 Firmware
Sy-711 Firmware
Sy-715 Firmware
Sy-751 Firmware
Sy-755 Firmware
Sy-777 Firmware
Sy-785 Firmware
Sy-765 Firmware
Sy-7500 Firmware
Sy-745 Firmware
Sy-780 Firmware
Affected Vendors
References (2)
Third Party Advisory
https://www.gov.il/en/Departments/faq/cve_advisories
Third Party Advisory
https://www.gov.il/en/Departments/faq/cve_advisories
46
/ 100
moderate-risk
Severity
26/34 · High
Exploitability
0/34 · Minimal
Exposure
20/34 · Moderate