CVE-2023-37220

nvd nist

Published: Sep 3, 2023Modified: Jun 17, 2026

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Synel Terminals - CWE-494: Download of Code Without Integrity Check

Affected (21)

Products: Synel: Synergy/a Firmware, Synergy Touch Firmware, Synergy 10 Firmware, Synergy 5 Firmware, Sy 910 Firmware, Synergy/x Firmware, Sy110 Face Firmware, Bioentry W2 Firmware, Biolite N2 Firmware, Bioentry P2 Firmware, Sy 711 Firmware, Sy 715 Firmware, Sy 751 Firmware, Sy 755 Firmware, Sy 777 Firmware, Sy 785 Firmware, Sy 765 Firmware, Sy 7500 Firmware, Sy 745 Firmware, Sy 780 Firmware, Synergy Firmware

Synel

21 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Synergy/a Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Synergy/a	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Synergy Touch Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Synergy Touch	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Synergy 10 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Synergy 10	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Synergy 5 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Synergy 5	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 910 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 910	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Synergy/x Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Synergy/x	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy110 Face Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy110 Face	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Bioentry W2 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Bioentry W2	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Biolite N2 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Biolite N2	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Bioentry P2 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Bioentry P2	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 711 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 711	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 715 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 715	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 751 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 751	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 755 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 755	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 777 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 777	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 785 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 785	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 765 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 765	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 7500 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 7500	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 745 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 745	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Sy 780 Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Sy 780	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synel Synergy Firmware	Before 3015.1

Running on/with	Platform Versions
Synel Synergy	All versions

Related CWEs

CWE-494

Download of Code Without Integrity Check

The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code.

References (2)

https://www.gov.il/en/Departments/faq/cve_advisories

Source: cna@cyber.gov.il

Third Party Advisory

https://www.gov.il/en/Departments/faq/cve_advisories

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.