Is CVE-2023-5777 actively exploited?

CVE-2023-5777 has no public evidence of in-the-wild exploitation as of 2024-11-21.

What is the CVSS score for CVE-2023-5777?

CVE-2023-5777 has a CVSS score of 9.8 (CRITICAL severity). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

How do I patch CVE-2023-5777?

Patch guidance is available from weintek security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2023-5777.

Fix CVE-2023-5777 - CRITICAL weintek easybuilder pro

Q: Which products are affected by CVE-2023-5777?

3 products: weintek easybuilder pro, weintek easybuilder pro, weintek easybuilder pro.

Description

Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.

CVSS Metrics

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector: network
Complexity: low
Privileges: none
User Action: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Weaknesses: CWE-798 · Hard-coded Credentials CWE-798 · Hard-coded Credentials

Metadata

Primary Vendor: WEINTEK
Published: 11/6/2023
Last Modified: 11/21/2024
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

weintek : easybuilder_proweintek : easybuilder_proweintek : easybuilder_pro

Remediation Guidance

Executive Summary

Cite this page

CVE-2023-5777. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2023-5777

View on NIST NVD

CVE-2023-5777 vulnerability