CVE-2023-5028 LOW

CVE-2023-5028: China Unicom TEWA-800G debug log file

Vendor China Unicom
Product TEWA-800G
Weakness CWE-534
Published September 17, 2023
Last update June 18, 2025

CVSS base score

2.0/10
Attack vector Physical
Attack complexity High
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

A vulnerability, which was classified as problematic, has been found in China Unicom TEWA-800G 4.16L.04_CT2015_Yueme. Affected by this issue is some unknown functionality. The manipulation leads to information exposure through debug log file. It is possible to launch the attack on the physical device. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. VDB-239870 is the identifier assigned to this vulnerability.

Key dates

02Disclosure timeline

September 17, 2023 CVE published
June 18, 2025 Record updated