Description
In instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level.
Related CPE's
Vulnerable
Vulnerable
References
Product
https://github.com/Sharpe-nl/CVEs/tree/main/CVE-2023-33469
ExploitThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2023-08-09T20:15:10.427
11 months agoLast modified
2023-08-17T01:40:13.813
11 months ago