MidnightBSD

Advisories for tadirantele

CVE-2023-37217

Tadiran Telecom Aeonix - CWE-204: Observable Response Discrepancy

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@cyber.gov.il 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

Products Affected

Vendor Product Version
tadirantele aeonix -
CVE-2023-37218

Tadiran Telecom Aeonix - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@cyber.gov.il 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
tadirantele aeonix -
CVE-2023-37219

Tadiran Telecom Composit - CWE-1236: Improper Neutralization of Formula Elements in a CSV File

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@cyber.gov.il 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9

Products Affected

Vendor Product Version
tadirantele aeonix -