CVE-2023-6919

7.5 HIGH

Authentication Bypass Path Traversal

📋 TL;DR

This path traversal vulnerability in Biges Safe Life Technologies Electronics Inc. VGuard allows attackers to access files outside the intended directory by manipulating file paths with '/../' sequences. It affects VGuard systems before version V500.0003.R008.4011.C0012.B351.C, potentially exposing sensitive system files.

💻 Affected Systems

Products:

• Biges Safe Life Technologies Electronics Inc. VGuard

Versions: All versions before V500.0003.R008.4011.C0012.B351.C

Operating Systems: Unknown - likely embedded/industrial OS

Default Config Vulnerable: ⚠️ Yes

Notes: Affects VGuard security/access control systems used in industrial/electronic applications.

📦 What is this software?

Vg 255 Bv Firmware by Biges

View all CVEs affecting Vg 255 Bv Firmware →

Vg 255 Df Firmware by Biges

View all CVEs affecting Vg 255 Df Firmware →

Vg 255a Bf Firmware by Biges

View all CVEs affecting Vg 255a Bf Firmware →

Vg 4c1a Lrpu Firmware by Biges

View all CVEs affecting Vg 4c1a Lrpu Firmware →

Vg 4c1a Lru Firmware by Biges

View all CVEs affecting Vg 4c1a Lru Firmware →

Vg 4c1e Nvr Firmware by Biges

View all CVEs affecting Vg 4c1e Nvr Firmware →

Vg 64c8rd Nvr Firmware by Biges

View all CVEs affecting Vg 64c8rd Nvr Firmware →

Vg 8c1a Lrpu Firmware by Biges

View all CVEs affecting Vg 8c1a Lrpu Firmware →

Vg 8c1e Nvr Firmware by Biges

View all CVEs affecting Vg 8c1e Nvr Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through reading sensitive configuration files, passwords, or system files, potentially leading to lateral movement and full network access.

🟠

Likely Case

Unauthorized access to sensitive files containing configuration data, credentials, or proprietary information stored on the VGuard system.

🟢

If Mitigated

Limited impact with proper network segmentation, file system permissions, and input validation controls in place.

🌐 Internet-Facing: HIGH - If VGuard is exposed to the internet, attackers can remotely exploit this without authentication to access sensitive files.

🏢 Internal Only: MEDIUM - Internal attackers or compromised systems could exploit this to escalate privileges or access sensitive data.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Path traversal vulnerabilities typically require minimal technical skill to exploit once the vulnerability is understood.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: V500.0003.R008.4011.C0012.B351.C or later

Vendor Advisory: https://www.usom.gov.tr/bildirim/tr-24-0054

Restart Required: Yes

Instructions:

1. Contact Biges Safe Life Technologies for patch availability. 2. Backup current configuration. 3. Apply patch version V500.0003.R008.4011.C0012.B351.C or later. 4. Restart the VGuard system. 5. Verify patch installation.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate VGuard systems from untrusted networks and internet access

Input Validation

all

Implement web application firewall rules to block path traversal patterns

Copy

WAF rule: block requests containing '/../' sequences

🧯 If You Can't Patch

• Implement strict network access controls to limit VGuard system exposure
• Monitor file access logs for suspicious path traversal patterns

🔍 How to Verify

Check if Vulnerable:

Copy

Check VGuard system version against affected version range. Attempt to access files using path traversal sequences if authorized for testing.

Check Version:

Copy

Check VGuard web interface or system configuration for version information (vendor-specific command)

Verify Fix Applied:

Copy

Verify system version is V500.0003.R008.4011.C0012.B351.C or later. Test that path traversal attempts no longer succeed.

📡 Detection & Monitoring

Log Indicators:

• HTTP requests containing '/../' sequences
• Unauthorized file access attempts
• Access to sensitive system paths

Network Indicators:

• HTTP requests with encoded path traversal patterns (%2e%2e%2f)
• Unusual file access patterns from external sources

SIEM Query:

Copy

http.url:*%2f..%2f* OR http.uri:*../*

📊 Metadata

CVE ID: CVE-2023-6919

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-25

Published: January 26, 2024

Last Updated: November 21, 2024

🔗 References

• https://www.usom.gov.tr/bildirim/tr-24-0054 Third Party Advisory
• https://www.usom.gov.tr/bildirim/tr-24-0054 Third Party Advisory

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-6919, you might also want to check these:

CVE-2025-68916 9.1

This vulnerability allows attackers to perform directory traversal through the certsupload.cgi endpo...

Same vulnerability type (CWE-25)

CVE-2023-52138 8.2

Engrampa archive manager for MATE environment has a path traversal vulnerability when extracting CPI...

Same vulnerability type (CWE-25)

CVE-2022-20775 7.8

This vulnerability in Cisco SD-WAN Software allows authenticated local attackers to gain root privil...

Same vulnerability type (CWE-25)