Details of VAR-202308-2008

ID

VAR-202308-2008

CVE

CVE-2023-39465

TITLE

Triangle MicroWorks of SCADA Data Gateway Vulnerability related to the use of hard-coded encryption keys in

Trust: 0.8

sources: JVNDB: JVNDB-2023-029207

DESCRIPTION

Triangle MicroWorks SCADA Data Gateway Use of Hard-coded Cryptograhic Key Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TmwCrypto class. The issue results from the usage of a hard-coded cryptograhic key and the usage of a hard-coded certificate. An attacker can leverage this vulnerability to disclose sensitive information. Was ZDI-CAN-20615

Trust: 2.88

sources: NVD: CVE-2023-39465 // JVNDB: JVNDB-2023-029207 // ZDI: ZDI-23-1033 // CNVD: CNVD-2025-21059 // VULMON: CVE-2023-39465

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-21059

AFFECTED PRODUCTS

vendor:	triangle microworks	model:	scada data gateway	scope:	-	version:	-	Trust: 1.5
vendor:	trianglemicroworks	model:	scada data gateway	scope:	eq	version:	5.1.3.20324	Trust: 1.0
vendor:	triangle microworks	model:	scada data gateway	scope:	eq	version:	-	Trust: 0.8
vendor:	triangle microworks	model:	scada data gateway	scope:	eq	version:	5.1.3.20324	Trust: 0.8
vendor:	triangle	model:	microworks scada data gateway	scope:	-	version:	-	Trust: 0.6

sources: ZDI: ZDI-23-1033 // CNVD: CNVD-2025-21059 // JVNDB: JVNDB-2023-029207 // NVD: CVE-2023-39465

CVSS

SEVERITY

CVSSV2

CVSSV3

zdi-disclosures@trendmicro.com:	CVE-2023-39465
value:	HIGH
Trust: 1.0
OTHER:	JVNDB-2023-029207
value:	HIGH
Trust: 0.8
ZDI:	CVE-2023-39465
value:	HIGH
Trust: 0.7
CNVD:	CNVD-2025-21059
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-21059
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:C/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

zdi-disclosures@trendmicro.com:	CVE-2023-39465
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.0
Trust: 1.0
OTHER:	JVNDB-2023-029207
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8
ZDI:	CVE-2023-39465
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.0
Trust: 0.7

sources: ZDI: ZDI-23-1033 // CNVD: CNVD-2025-21059 // JVNDB: JVNDB-2023-029207 // NVD: CVE-2023-39465

PROBLEMTYPE DATA

problemtype:	CWE-321	Trust: 1.0
problemtype:	Using hardcoded encryption keys (CWE-321) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2023-029207 // NVD: CVE-2023-39465

PATCH

title:	Triangle MicroWorks has issued an update to correct this vulnerability.	url:	https://www.trianglemicroworks.com/products/scada-data-gateway/what's-new	Trust: 0.7
title:	Patch for Triangle MicroWorks SCADA Data Gateway Information Disclosure Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/731076	Trust: 0.6

sources: ZDI: ZDI-23-1033 // CNVD: CNVD-2025-21059

EXTERNAL IDS

db:	NVD	id:	CVE-2023-39465	Trust: 4.0
db:	ZDI	id:	ZDI-23-1033	Trust: 2.6
db:	JVNDB	id:	JVNDB-2023-029207	Trust: 0.8
db:	ZDI_CAN	id:	ZDI-CAN-20615	Trust: 0.7
db:	CNVD	id:	CNVD-2025-21059	Trust: 0.6
db:	VULMON	id:	CVE-2023-39465	Trust: 0.1

sources: ZDI: ZDI-23-1033 // CNVD: CNVD-2025-21059 // VULMON: CVE-2023-39465 // JVNDB: JVNDB-2023-029207 // NVD: CVE-2023-39465

REFERENCES

url:	https://www.trianglemicroworks.com/products/scada-data-gateway/what's-new	Trust: 2.5
url:	https://www.zerodayinitiative.com/advisories/zdi-23-1033/	Trust: 1.9
url:	https://nvd.nist.gov/vuln/detail/cve-2023-39465	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2023-39465	Trust: 0.6

sources: ZDI: ZDI-23-1033 // CNVD: CNVD-2025-21059 // VULMON: CVE-2023-39465 // JVNDB: JVNDB-2023-029207 // NVD: CVE-2023-39465

CREDITS

Uri Katz of Claroty Team82

Trust: 0.7

sources: ZDI: ZDI-23-1033

SOURCES

db:	ZDI	id:	ZDI-23-1033
db:	CNVD	id:	CNVD-2025-21059
db:	VULMON	id:	CVE-2023-39465
db:	JVNDB	id:	JVNDB-2023-029207
db:	NVD	id:	CVE-2023-39465

LAST UPDATE DATE

2025-10-17T23:18:34.960000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-23-1033	date:	2023-08-04T00:00:00
db:	CNVD	id:	CNVD-2025-21059	date:	2025-09-11T00:00:00
db:	JVNDB	id:	JVNDB-2023-029207	date:	2025-06-20T02:24:00
db:	NVD	id:	CVE-2023-39465	date:	2025-06-17T21:03:22.110

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-23-1033	date:	2023-08-04T00:00:00
db:	CNVD	id:	CNVD-2025-21059	date:	2025-09-11T00:00:00
db:	JVNDB	id:	JVNDB-2023-029207	date:	2025-06-20T00:00:00
db:	NVD	id:	CVE-2023-39465	date:	2024-05-03T03:15:12.030