CVE-2023-3768: Vulnerability in Ingeteam's INGEPAC EF/DA

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-3768

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Vulnerability in Ingeteam's INGEPAC EF/DA

Source: NVD (National Vulnerability Database)

Vulnerability Description

Incorrect data input validation vulnerability, which could allow an attacker with access to the network to implement fuzzing techniques that would allow him to gain knowledge about specially crafted packets that would create a DoS condition through the MMS protocol when initiating communication, achieving a complete system reboot of the device and its services.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

输入验证不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

Ingeteam Ingepac Da Au 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Ingeteam Ingepac Da Au是Ingeteam公司的一款经济实惠的解决方案。用于对电网中任何地方的故障旁路进行完整的测量和检测。 Ingeteam Ingepac Da Au存在输入验证错误漏洞，该漏洞源于存在不正确的数据输入验证漏洞，该漏洞可能允许有权访问网络的攻击者实施模糊测试技术，从而使他能够获取有关特制数据包的知识，这些数据包会在启动通信时通过 MMS 协议创建 DoS 条件，从而实现系统完全重启，以下产品和版本受到影响：INGEPAC DA3451 固件版本 0.29.2.42、

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Ingeteam	INGEPAC DA3451	0.29.2.42	-

II. Public POCs for CVE-2023-3768

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-3768

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: INGEPAC DA3451

CVE-2023-3770
Vulnerability in Ingeteam's INGEPAC DA

Same vendor: Ingeteam

Same weakness: CWE-20

V. Comments for CVE-2023-3768

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2023-3768

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-3768

III. Intelligence Information for CVE-2023-3768

IV. Related Vulnerabilities

V. Comments for CVE-2023-3768

Leave a comment