CVE-2023-28725

General Bytes Crypto Application Server (CAS) 20230120, as distributed with General Bytes BATM devices, allows remote attackers to execute arbitrary Java code by uploading a Java application to the /batm/app/admin/standalone/deployments directory, aka BATM-4780, as exploited in the wild in March 2023. This is fixed in 20221118.48 and 20230120.44.

CVSS

No CVSS.

References

Link	Resource
https://www.generalbytes.com/en/support/changelog
https://generalbytes.atlassian.net/wiki/spaces/ESD/pages/2885222430/Security+Incident+March+17-18th+2023
https://web3isgoinggreat.com/single/general-bytes-crypto-atms-exploited-for-over-1-6-million
https://www.bleepingcomputer.com/news/security/general-bytes-bitcoin-atms-hacked-using-zero-day-15m-stolen/
https://twitter.com/generalbytes/status/1637192687160897537
https://generalbytes.atlassian.net/wiki/spaces/ESD/pages/951418958/Update+CAS
https://arstechnica.com/information-technology/2023/03/hackers-drain-bitcoin-atms-of-1-5-million-by-exploiting-0-day-bug/

Advertisement

Configurations

No configuration.

Information

Published : 2023-03-21 17:15

Updated : 2023-03-22 05:48

NVD link : CVE-2023-28725

Mitre link : CVE-2023-28725

JSON object : View

CWE

No CWE.

Advertisement

Products Affected

No product.

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://www.generalbytes.com/en/support/changelog", "name": "https://www.generalbytes.com/en/support/changelog", "tags": [], "refsource": "MISC"}, {"url": "https://generalbytes.atlassian.net/wiki/spaces/ESD/pages/2885222430/Security+Incident+March+17-18th+2023", "name": "https://generalbytes.atlassian.net/wiki/spaces/ESD/pages/2885222430/Security+Incident+March+17-18th+2023", "tags": [], "refsource": "MISC"}, {"url": "https://web3isgoinggreat.com/single/general-bytes-crypto-atms-exploited-for-over-1-6-million", "name": "https://web3isgoinggreat.com/single/general-bytes-crypto-atms-exploited-for-over-1-6-million", "tags": [], "refsource": "MISC"}, {"url": "https://www.bleepingcomputer.com/news/security/general-bytes-bitcoin-atms-hacked-using-zero-day-15m-stolen/", "name": "https://www.bleepingcomputer.com/news/security/general-bytes-bitcoin-atms-hacked-using-zero-day-15m-stolen/", "tags": [], "refsource": "MISC"}, {"url": "https://twitter.com/generalbytes/status/1637192687160897537", "name": "https://twitter.com/generalbytes/status/1637192687160897537", "tags": [], "refsource": "MISC"}, {"url": "https://generalbytes.atlassian.net/wiki/spaces/ESD/pages/951418958/Update+CAS", "name": "https://generalbytes.atlassian.net/wiki/spaces/ESD/pages/951418958/Update+CAS", "tags": [], "refsource": "MISC"}, {"url": "https://arstechnica.com/information-technology/2023/03/hackers-drain-bitcoin-atms-of-1-5-million-by-exploiting-0-day-bug/", "name": "https://arstechnica.com/information-technology/2023/03/hackers-drain-bitcoin-atms-of-1-5-million-by-exploiting-0-day-bug/", "tags": [], "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "General Bytes Crypto Application Server (CAS) 20230120, as distributed with General Bytes BATM devices, allows remote attackers to execute arbitrary Java code by uploading a Java application to the /batm/app/admin/standalone/deployments directory, aka BATM-4780, as exploited in the wild in March 2023. This is fixed in 20221118.48 and 20230120.44."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2023-28725", "ASSIGNER": "cve@mitre.org"}}, "impact": {}, "publishedDate": "2023-03-22T00:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2023-03-22T12:48Z"}