CVE-2023-6919

moderate-risk
Published 2024-01-26

Path Traversal: '/../filedir' vulnerability in Biges Safe Life Technologies Electronics Inc. VGuard allows Absolute Path Traversal.This issue affects VGuard: before V500.0003.R008.4011.C0012.B351.C.

Do I need to act?

-
0.24% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (9)

Vg-4C1A-Lru Firmware
Vg-4C1A-Lrpu Firmware
Vg-255A-Bf Firmware
Vg-255-Bv Firmware
Vg-255-Df Firmware
Vg-64C8Rd-Nvr Firmware
Vg-4C1E-Nvr Firmware
Vg-8C1E-Nvr Firmware
Vg-8C1A-Lrpu Firmware

Affected Vendors

Biges

References (2)

Third Party Advisory https://www.usom.gov.tr/bildirim/tr-24-0054
Third Party Advisory https://www.usom.gov.tr/bildirim/tr-24-0054
42
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 1/34 · Minimal
Exposure 15/34 · Moderate