Home

Description

Connected IO v2.1.0 and prior has an argument injection vulnerability in its iptables command message in its communication protocol, enabling attackers to execute arbitrary OS commands on devices.

PUBLISHED Reserved 2023-05-22 | Published 2023-08-04 | Updated 2024-10-17 | Assigner mitre

References

www.connectedio.com/products/routers

claroty.com/team82/disclosure-dashboard/cve-2023-33376

cve.org (CVE-2023-33376)

nvd.nist.gov (CVE-2023-33376)

Download JSON