https://wiki.securepoint.de/index.php?action=history&feed=atom&title=Advisory%2FCVE-2023-22897.lang 2026-06-13T02:35:57Z Versionsgeschichte dieser Seite in Securepoint Wiki MediaWiki 1.43.5 https://wiki.securepoint.de/index.php?title=Advisory/CVE-2023-22897.lang&diff=95596&oldid=prev 2025-04-17T15:19:13Z

<p></p> <table style="background-color: #fff; color: #202122;" data-mw="interface"> <col class="diff-marker" /> <col class="diff-content" /> <col class="diff-marker" /> <col class="diff-content" /> <tr class="diff-title" lang="de"> <td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">← Nächstältere Version</td> <td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">Version vom 17. April 2025, 17:19 Uhr</td> </tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l55">Zeile 55:</td> <td colspan="2" class="diff-lineno">Zeile 55:</td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | Beschreibung der Auswirkungen</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | Beschreibung der Auswirkungen</div></td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | Description of the effects }}</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | Description of the effects }}</div></td></tr> <tr><td colspan="2" class="diff-side-deleted"></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">{{var2 | Update2--date | 17.04.2025 }}</ins></div></td></tr> <tr><td colspan="2" class="diff-side-deleted"></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">{{var2 | Update2--desc</ins></div></td></tr> <tr><td colspan="2" class="diff-side-deleted"></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"> | EUVD-Nummer ergänzt</ins></div></td></tr> <tr><td colspan="2" class="diff-side-deleted"></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"> | Added EUVD number }}</ins></div></td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>{{var2 | Lösung--desc</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>{{var2 | Lösung--desc</div></td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | Benutzern wird empfohlen, auf die korrigierte Version 12.2.5.1 zu aktualisieren, um diese Schwachstelle zu beheben.</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | Benutzern wird empfohlen, auf die korrigierte Version 12.2.5.1 zu aktualisieren, um diese Schwachstelle zu beheben.</div></td></tr> <!-- diff cache key wiki2:diff:1.41:old-95588:rev-95596:php=table --> </table>

Lauritzl https://wiki.securepoint.de/index.php?title=Advisory/CVE-2023-22897.lang&diff=95588&oldid=prev 2025-04-17T15:08:33Z

<p></p> <table style="background-color: #fff; color: #202122;" data-mw="interface"> <col class="diff-marker" /> <col class="diff-content" /> <col class="diff-marker" /> <col class="diff-content" /> <tr class="diff-title" lang="de"> <td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">← Nächstältere Version</td> <td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">Version vom 17. April 2025, 17:08 Uhr</td> </tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l10">Zeile 10:</td> <td colspan="2" class="diff-lineno">Zeile 10:</td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | CVE-2023-22897</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | CVE-2023-22897</div></td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | CVE-2023-22897 }}</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | CVE-2023-22897 }}</div></td></tr> <tr><td colspan="2" class="diff-side-deleted"></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">{{var | EUVD</ins></div></td></tr> <tr><td colspan="2" class="diff-side-deleted"></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"> | EUVD-2023-27000</ins></div></td></tr> <tr><td colspan="2" class="diff-side-deleted"></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"> |  }}</ins></div></td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>{{var2 | Produkt--desc</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>{{var2 | Produkt--desc</div></td></tr> <tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | UTM</div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div> | UTM</div></td></tr> <!-- diff cache key wiki2:diff:1.41:old-92948:rev-95588:php=table --> </table>

Lauritzl https://wiki.securepoint.de/index.php?title=Advisory/CVE-2023-22897.lang&diff=92948&oldid=prev 2024-09-23T08:43:04Z

<p>Die Seite wurde neu angelegt: „{{Lang}} {{#vardefine:headerIcon| spicon-avatar}} &lt;templatestyles src=&quot;Vorlage:Advisory.css&quot; /&gt; {{var2 | head | Topic: Anmeldeprozess des Webinterfaces der UTM | Topic: Login process of the UTM web interface }} {{var | display | CVE-2023-22897 | CVE-2023-22897 }} {{var2 | Produkt--desc | UTM | UTM }} {{var2 | Komponente--desc | GUI - Login | GUI - Login }} {{var2 | Score--val | 6.5 | 6.5 }} {{var2 | Betroffene Version--desc | * 12.…“</p> <p><b>Neue Seite</b></p><div>{{Lang}}<br /> <br /> {{#vardefine:headerIcon| spicon-avatar}}<br /> &lt;templatestyles src=&quot;Vorlage:Advisory.css&quot; /&gt;<br /> <br /> {{var2 | head<br /> | Topic: Anmeldeprozess des Webinterfaces der UTM<br /> | Topic: Login process of the UTM web interface }}<br /> {{var | display<br /> | CVE-2023-22897<br /> | CVE-2023-22897 }}<br /> {{var2 | Produkt--desc<br /> | UTM<br /> | UTM }}<br /> {{var2 | Komponente--desc<br /> | GUI - Login<br /> | GUI - Login }}<br /> {{var2 | Score--val<br /> | 6.5<br /> | 6.5 }}<br /> {{var2 | Betroffene Version--desc<br /> | * 12.2.5<br /> * 12.2.4.1<br /> * 12.2.4<br /> * 12.2.3.4<br /> * 12.2.3.3<br /> * 12.2.3.2 Reseller Preview<br /> * 12.2.3.1 Reseller Preview<br /> | &lt;ul&gt;<br /> * 12.2.5<br /> * 12.2.4.1<br /> * 12.2.4<br /> * 12.2.3.4<br /> * 12.2.3.3<br /> * 12.2.3.2 Reseller Preview<br /> * 12.2.3.1 Reseller Preview<br /> &lt;/ul&gt; }}<br /> {{var2 | Gelöst in Version--desc<br /> | 12.2.5.1<br /> | 12.2.5.1 }}<br /> {{var | gelöst Datum | 06.01.2023 }}<br /> {{var | Veröffentlicht--date | 06.01.2023 }}<br /> {{var | Last Update--date | 21.04.2023 }}<br /> {{var2 | Beschreibung--desc<br /> | Kritische Sicherheitslücke im Anmeldeprozess des Webinterfaces<br /> | Critical security vulnerability in the login process of the web interface }}<br /> {{var2 | Auswirkungen--desc<br /> | Der Endpunkt der Firewall unter /spcgi.cgi ermöglicht die Offenlegung von Speicherinhalten durch einen authentifizierten Benutzer. Im Wesentlichen können nicht initialisierte Daten über einen Ansatz abgerufen werden, bei dem sie eine sessionid erhalten, aber nicht verwendet werden.<br /> | The firewall&#039;s endpoint at /spcgi.cgi allows information disclosure of memory contents to be achieved by an authenticated user. Essentially, uninitialized data can be retrieved via an approach in which a sessionid is obtained but not used. }}<br /> {{var2 | Update1--date | 21.04.2023 }}<br /> {{var2 | Update1--desc<br /> | Beschreibung der Auswirkungen<br /> | Description of the effects }}<br /> {{var2 | Lösung--desc<br /> | Benutzern wird empfohlen, auf die korrigierte Version 12.2.5.1 zu aktualisieren, um diese Schwachstelle zu beheben.<br /> | Users are advised to update to the corrected version 12.2.5.1 to fix this vulnerability. }}<br /> <br /> ----<br /> {{var2 | <br /> | <br /> | }}<br /> <br /> &lt;/div&gt;</div>

Lauritzl