Cyber Resilience

CVE-2023-45852

CriticalPublic PoCRCE

Published: 14 October 2023

Published
14 October 2023
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.9359 99.8th percentile
Risk Priority 76 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-45852 is a critical-severity Command Injection (CWE-77) vulnerability in Viessmann Vitogate 300 Firmware. Its CVSS base score is 9.8 (Critical).

Operationally, ranked in the top 0.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

CVE-2023-45852 is a command-injection vulnerability in Vitogate 300 version 2.1.3.0. Unauthenticated attackers can reach the /cgi-bin/vitogate.cgi endpoint and supply shell metacharacters inside the ipaddr field of a JSON put request, bypassing all authentication checks and executing arbitrary operating-system commands.

Remote, unauthenticated attackers can therefore obtain a root shell on the affected gateway, allowing them to read or modify configuration data, pivot into connected building-automation networks, or install persistent malware.

Public references consist of the vendor product page and a detailed proof-of-concept published on GitHub; neither source describes an official patch or configuration workaround.

The CVE carries a CVSS score of 9.8 and an EPSS score of 0.9359, indicating a high likelihood of exploitation in the wild.

EU & UK References

Vulnerability details

In Vitogate 300 2.1.3.0, /cgi-bin/vitogate.cgi allows an unauthenticated attacker to bypass authentication and execute arbitrary commands via shell metacharacters in the ipaddr params JSON data for the put method.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

viessmann
vitogate 300 firmware
≤ 2.1.3.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References