CVE-2023-3634 PUBLISHED

Festo: MSE6-C2M/D2M/E2M Incomplete User Documentation of Remote Accessible Functions

Assigner: CERTVDE
Reserved: 12.07.2023 Published: 16.04.2026 Updated: 16.04.2026

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS Score: 8.8

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	Festo
Product	MSE6-C2M-5000-FB36-D-M-RG-BAR-M12L4-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-C2M-5000-FB36-D-M-RG-BAR-M12L5-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-C2M-5000-FB43-D-M-RG-BAR-M12L4-MQ1-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-C2M-5000-FB43-D-M-RG-BAR-M12L5-MQ1-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-C2M-5000-FB44-D-M-RG-BAR-AMI-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-C2M-5000-FB44-D-RG-BAR-AMI-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-D2M-5000-CBUS-S-RG-BAR-VCB-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-E2M-5000-FB13-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-E2M-5000-FB36-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-E2M-5000-FB37-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-E2M-5000-FB43-AGD
Versions	Default: unaffected Version * is affected

Vendor	Festo
Product	MSE6-E2M-5000-FB44-AGD
Versions	Default: unaffected Version * is affected

References

Problem Types

CWE-1242 Inclusion of Undocumented Features or Chicken Bits CWE