cbcvebase.
CVE-2023-46687
published 2024-02-09

CVE-2023-46687: In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an unauthenticated user with network access could execute arbitrary commands in root context from…

PriorityP270critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.94%
56.3th percentile
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an unauthenticated user with network access could execute arbitrary commands in root context from a remote computer.

Affected

6 ranges
VendorProductVersion rangeFixed in
emersongc1500xa_firmware
emersongc370xa_firmware
emersongc700xa_firmware
emersonrosemount_gc1500xa<= Version 4.1.5
emersonrosemount_gc370xa<= Version 4.1.5
emersonrosemount_gc700xa<= Version 4.1.5

Detection & IOCsextracted from sources · hover to see the quote

  • Unauthenticated remote command injection in root context targeting Emerson Rosemount GC370XA, GC700XA, and GC1500XA gas chromatographs via network access — no authentication required, no user interaction needed (AV:N/AC:L/PR:N/UI:N)
  • Affected firmware versions: GC370XA, GC700XA, GC1500XA version 4.1.5 and all prior revisions — fingerprint device version to identify vulnerable targets
  • CVE-2023-46687 CVSS v3.1 vector indicates network-reachable, low-complexity, no-privilege attack surface — monitor for unexpected outbound/inbound connections and command execution from Rosemount GC devices
  • ·No known public exploitation or proof-of-concept has been reported as of the advisory publication date; exploitation complexity noted as high in advisory context despite low CVSS AC score
  • ·Vulnerability is network-adjacent for related CVEs (CVE-2023-49716, CVE-2023-51761, CVE-2023-43609) but CVE-2023-46687 is fully network-accessible (AV:N) — ensure detection rules distinguish between network-adjacent and internet-facing exposure scenarios
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.