{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-23T20:51:43.295","vulnerabilities":[{"cve":{"id":"CVE-2023-3453","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2023-08-23T22:15:08.930","lastModified":"2026-06-17T06:14:06.273","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"\nETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition.\n\n"},{"lang":"es","value":"La autenticación del portal de gestión en webETIC Telecom RAS versiones 4.7.0 y anteriores está deshabilitada por defecto. Esto podría permitir a un atacante con acceso a la red adyacente alterar la configuración del dispositivo o causar una condición de denegación de servicio."}],"affected":[{"source":"ics-cert@hq.dhs.gov","affectedData":[{"vendor":"ETIC Telecom","product":"Remote Access Server (RAS)","defaultStatus":"unaffected","versions":[{"version":"0","lessThanOrEqual":"4.7.0","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.2}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-09-30T19:09:13.772804Z","id":"CVE-2023-3453","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-1188"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:etictelecom:remote_access_server_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"4.7.0","matchCriteriaId":"418E040C-258B-4D39-AF47-62E801FF6D9A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-c-100-lw:-:*:*:*:*:*:*:*","matchCriteriaId":"5DAE45DD-78EE-4ACB-A1E5-C190BE642BDF"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-e-100:-:*:*:*:*:*:*:*","matchCriteriaId":"93F02AE2-6AC3-492E-9E91-E9F0725A1EEB"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-e-220:-:*:*:*:*:*:*:*","matchCriteriaId":"C32ED13F-237B-441C-8032-F54615AEFC73"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-e-400:-:*:*:*:*:*:*:*","matchCriteriaId":"86536932-B27A-4028-829D-2924CD431C54"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ec-220-lw:-:*:*:*:*:*:*:*","matchCriteriaId":"52E2D325-0AE3-4459-9F27-5CC19349F060"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ec-400-lw:-:*:*:*:*:*:*:*","matchCriteriaId":"DB8D1AA9-42C0-4546-A02E-91B3D7A8AD4B"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ec-480-lw:-:*:*:*:*:*:*:*","matchCriteriaId":"50EEA797-3218-44FE-8D93-178C40F4BF17"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ecw-220-lw:-:*:*:*:*:*:*:*","matchCriteriaId":"E768A79E-BBFD-47C1-8535-1F721D92575C"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ecw-400-lw:-:*:*:*:*:*:*:*","matchCriteriaId":"F1D86798-3C5F-40A9-BF41-0602F78A027B"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ew-100:-:*:*:*:*:*:*:*","matchCriteriaId":"D12CC48E-6DAC-4412-9068-04B774540500"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ew-220:-:*:*:*:*:*:*:*","matchCriteriaId":"7D7A25F4-412A-4D16-922F-1219B86E31A0"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:ras-ew-400:-:*:*:*:*:*:*:*","matchCriteriaId":"32675A39-A1B3-4773-902A-6E6F8A72D16D"},{"vulnerable":false,"criteria":"cpe:2.3:h:etictelecom:rfm-e:-:*:*:*:*:*:*:*","matchCriteriaId":"B7543976-5400-4A9E-8E62-CB65FD00D0E1"}]}]}],"references":[{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-23-208-01","source":"ics-cert@hq.dhs.gov","tags":["Patch","Third Party Advisory","US Government Resource"]},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-23-208-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory","US Government Resource"]}]}}]}