CVE-2023-3703 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	10 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
proscend	m357-5g_firmware	1.76
proscend	m357-ai_firmware	1.76
proscend	m350-5g_firmware	1.76
proscend	m350-w5g_firmware	1.76
proscend	m350-6_firmware	1.76
proscend	m350-w6_firmware	1.76
proscend	m331_firmware	1.76
proscend	m330-w_firmware	1.76
proscend	m330-w5_firmware	1.76
proscend	m301-g_firmware	1.76
proscend	m301-gw_firmware	1.76
proscend	m560-5g_firmware	1.76
proscend	m360-p_firmware	1.76
proscend	a551i-f1_firmware	1.76
proscend	a552i-f1_firmware	1.76
proscend	a510-f1_firmware	1.76
proscend	a520i-f1_firmware	1.76
proscend	a551i-f4_firmware	1.76
proscend	a543i-l1_firmware	1.76
proscend	a510-l1_firmware	1.76

𝑥

= Vulnerable software versions

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
proscend	icr_series_routers_fw	1.76 ≤ 𝑥 < 2.24	ADP

Common Weakness Enumeration

CWE-1392 - Use of Default Credentials
The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality.

References

https://www.gov.il/en/Departments/faq/cve_advisories

https://www.gov.il/en/Departments/faq/cve_advisories