CVE-2023-6919 - Vulnerability Details

Path Traversal: '/../filedir' vulnerability in Biges Safe Life Technologies Electronics Inc. VGuard allows Absolute Path Traversal. This issue affects VGuard: before V500.0003.R008.4011.C0012.B351.C.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00303.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Biges	Vg-255-bv Vg-255-bv Firmware Vg-255-df Vg-255-df Firmware Vg-255a-bf Vg-255a-bf Firmware Vg-4c1a-lrpu Vg-4c1a-lrpu Firmware Vg-4c1a-lru Vg-4c1a-lru Firmware Vg-4c1e-nvr Vg-4c1e-nvr Firmware Vg-64c8rd-nvr Vg-64c8rd-nvr Firmware Vg-8c1a-lrpu Vg-8c1a-lrpu Firmware Vg-8c1e-nvr Vg-8c1e-nvr Firmware

Configuration 1 [-]

AND

cpe:2.3:o:biges:vg-4c1a-lru_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-4c1a-lru:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:biges:vg-4c1a-lrpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-4c1a-lrpu:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:biges:vg-255a-bf_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-255a-bf:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:biges:vg-255-bv_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-255-bv:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:biges:vg-255-df_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-255-df:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:biges:vg-64c8rd-nvr_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-64c8rd-nvr:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:biges:vg-4c1e-nvr_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-4c1e-nvr:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:biges:vg-8c1e-nvr_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-8c1e-nvr:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:biges:vg-8c1a-lrpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:biges:vg-8c1a-lrpu:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-0054
https://www.usom.gov.tr/bildirim/tr-24-0054

History

Wed, 20 May 2026 08:45:00 +0000

Type	Values Removed	Values Added
Description	Path Traversal: '/../filedir' vulnerability in Biges Safe Life Technologies Electronics Inc. VGuard allows Absolute Path Traversal.This issue affects VGuard: before V500.0003.R008.4011.C0012.B351.C.	Path Traversal: '/../filedir' vulnerability in Biges Safe Life Technologies Electronics Inc. VGuard allows Absolute Path Traversal. This issue affects VGuard: before V500.0003.R008.4011.C0012.B351.C.
References		https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-0054

Tue, 17 Jun 2025 22:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: TR-CERT

Published: 2024-01-26T07:52:59.322Z

Updated: 2026-05-20T08:05:18.057Z

Reserved: 2023-12-18T13:06:02.237Z

Link: CVE-2023-6919

Vulnrichment

Updated: 2024-08-02T08:42:08.659Z

NVD

Status : Modified

Published: 2024-01-26T08:15:42.203

Modified: 2026-05-20T09:16:26.227

Link: CVE-2023-6919

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object