CVE-2023-5058

EPSS 0.04%
Veröffentlicht 07.12.2023 23:15:07
Zuletzt bearbeitet 25.09.2025 21:17:13
Quelle 22d9ba52-f336-4b0d-bf1f-0efbdc
CVE-Watchlists
Login
Unerledigt
Login

Improper Input Validation in the processing of user-supplied splash screen during system boot in Phoenix SecureCore™ Technology™ 4 potentially allows denial-of-service attacks or arbitrary code execution.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Phoenixtech ≫ Securecore Technology Version4.*

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.131

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.phoenix.com/security-notifications/

Not Applicable

https://www.kb.cert.org/vuls/id/811862

Third Party Advisory

https://www.phoenix.com/security-notifications/cve-2023-5058/

Not Applicable

https://phoenixtech.com/phoenix-security-notifications/cve-2023-5058/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-5058

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-5058

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-5058

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-5058