CVE-2023-41256
published 2023-09-11CVE-2023-41256: Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication…
PriorityP262critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
EPSS
0.74%
50.1th percentile
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication bypass that could allow an unauthorized attacker to obtain user access.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| dover_fueling_solutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
| doverfuelingsolutions | maglink_lx_web_console_configuration | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →CVE-2023-41256 is an authentication bypass via alternate path or channel (CWE-288) in Dover Fueling Solutions MAGLINK LX Web Console Configuration — an unauthenticated remote attacker can obtain user access without credentials. Monitor for unauthenticated or anomalous HTTP requests to the MAGLINK LX Web Console interface. ↗
- →The vulnerability is exploitable remotely with low attack complexity and requires no privileges or user interaction (AV:N/AC:L/PR:N/UI:N), making it trivially exploitable from the network. Alert on any external/internet-facing exposure of MAGLINK LX Web Console ports. ↗
- →A companion vulnerability (CVE-2023-36497, CWE-305) allows a guest user to elevate to admin privileges via the same Web Console. Correlate low-privilege login events followed by admin-level actions on MAGLINK LX devices. ↗
- →A companion path traversal vulnerability (CVE-2023-38256, CWE-22) allows an authenticated high-privilege attacker to read arbitrary files on the system. Monitor for HTTP requests containing directory traversal sequences (e.g., '../') targeting the MAGLINK LX Web Console. ↗
- ·Affected versions are MAGLINK LX Web Console Configuration 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3. Fixed versions are MAGLINK LX 3 version 3.4.2.2.6 and MAGLINK LX 4. Ensure deployed devices are not running any of the listed vulnerable versions. ↗
- ·Devices may be deployed worldwide beyond the EU/UK certification area. Asset inventory should not be limited to EU/UK deployments. ↗
- ·No known public exploitation of CVE-2023-41256 had been reported to CISA at time of advisory publication (September 07, 2023), but the high CVSS score (9.1) and zero-prerequisite exploitability make it a high-priority patching target. ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Dover Fueling Solutions MAGLINK LX Console
cisa_ics·2023-09-07·CVSS 8.8
[HIGH] Dover Fueling Solutions MAGLINK LX Console
ICS Advisory
##
Dover Fueling Solutions MAGLINK LX Console
Release DateSeptember 07, 2023
Alert CodeICSA-23-250-01
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.1
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Dover Fueling Solutions
- Equipment: MAGLINK LX - Web Console Configuration
- Vulnerabilities: Authentication Bypass using an Alternate Path or Channel, Authentication Bypass by Primary Weakness, Path Traversal
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to gain full access to the system.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of MAGLINK LX Web Console Configuration are affected:
- MAGLINK LX Web Console Configuration: version 2.5.1
- MAGLINK LX Web Conso
GHSA
GHSA-x3j2-3cg4-hvrw: Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2
ghsa_unreviewed·2023-09-11
CVE-2023-41256 [CRITICAL] CWE-288 GHSA-x3j2-3cg4-hvrw: Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication bypass that could allow an unauthorized attacker to obtain user access.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-09-11
Published