CVE-2023-34873 | Mobotix Mx6 v26 tcpdump expression/command delimiters (icsa-24-235-03)

A vulnerability, which was classified as very critical, was found in Mobotix P3 D24M, P3 M24M, P3 Q24M, P3 T24M, P3 D14Di, P3 S14, P3 V14D, P3 i25, P3 c25, P3 p25, P3 v25, P3 D25M, P3 M25M, P3 Q25M, P3 T25M, P3 D15Di, P3 M15, P3 M15-Thermal, P3 S15, P3 V15D, Mx6 D16, Mx6 M16, Mx6 S16, Mx6 V16, Mx6 D26, Mx6 M26, Mx6 Q26, Mx6 S26, Mx6 T26, Mx6 c26, Mx6 i26, Mx6 p26 and Mx6 v26. Affected is an unknown function of the component tcpdump. The manipulation leads to improper neutralization of expression/command delimiters.

This vulnerability is traded as CVE-2023-34873. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-34873 | Mobotix Mx6 v26 tcpdump expression/command delimiters (icsa-24-235-03)

Related Posts

CVE-2023-45931 | Freedesktop Mesa 23.0.4 check_xshm null pointer dereference

CVE-2024-8340 | SourceCodester Electric Billing Management System 1.0 /Actions.php username sql injection

CVE-2024-26708 | Linux Kernel up to 6.6.17/6.7.5 mptcp subflow_state_change race condition (4bfe217e075d/e158fb9679d1/337cebbd850f)

CVE-2024-23181 | appleple A-Blog CMS up to 2.8.x/2.10.49/2.11.57/3.0.28/3.1.6 cross site scripting