CVE-2023-49899 PUBLISHED

Origin Validation Error in X-Rite MA-T6

Assigner: CERTVDE
Reserved: 01.12.2023 Published: 16.07.2026 Updated: 16.07.2026

An unauthenticated remote attacker can execute any command on the affected device due to not correctly verifying the origin of a communication channel.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS Score: 9.8

Product Status

Vendor X-Rite
Product MA-T6
Versions Default: unaffected
  • affected from 0 to v2.33 (excl.)

References

Problem Types

  • CWE-346 Origin Validation Error CWE