CVE-2023-35794

Published: Oct 27, 2023Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

An issue was discovered in Cassia Access Controller 2.1.1.2303271039. The Web SSH terminal endpoint (spawned console) can be accessed without authentication. Specifically, there is no session cookie validation on the Access Controller; instead, there is only Basic Authentication to the SSH console.

Affected (1)

Products: Cassianetworks: Access Controller

1 product

Access Controller

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cassianetworks Access Controller	Version 2.1.1.2303271039

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (6)

https://blog.kscsc.online/cves/202335794/md.html

Source: cve@mitre.org

https://github.com/Dodge-MPTC/CVE-2023-35794-WebSSH-Hijacking

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.cassianetworks.com/products/iot-access-controller/

Source: cve@mitre.org

Product

https://blog.kscsc.online/cves/202335794/md.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://github.com/Dodge-MPTC/CVE-2023-35794-WebSSH-Hijacking

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.cassianetworks.com/products/iot-access-controller/

Source: af854a3a-2127-422b-91ae-364da2661108

Product

Timeline

No history available yet.