← Back

Device Registration Portal

device_registration_portal

Vendor: Bluecatnetworks • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-23595
1Bluecatnetworks
1Device Registration Portal
Apr 8, 2025
Jan 15, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
BlueCat Device Registration Portal 2.2 allows XXE attacks that exfiltrate single-line files. A single-line file might contain credentials, such as "machine example.com login daniel password qwerty" in the documentation e...Show more
BlueCat Device Registration Portal 2.2 allows XXE attacks that exfiltrate single-line files. A single-line file might contain credentials, such as "machine example.com login daniel password qwerty" in the documentation example for the .netrc file format. NOTE: 2.x versions are no longer supported. There is no available information about whether any later version is affected.Show less