CVE-2023-53770
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-09

Last updated on: 2025-12-09

Assigner: VulnCheck

Description
MiniDVBLinux 5.4 contains an unauthenticated configuration download vulnerability that allows remote attackers to access sensitive system configuration files through a direct object reference. Attackers can exploit the backup download endpoint by sending a GET request with 'action=getconfig' to retrieve a complete system configuration archive containing sensitive credentials.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-09
Last Modified
2025-12-09
Generated
2026-06-16
AI Q&A
2025-12-10
EPSS Evaluated
2026-06-14
NVD
CVE-2023-53770
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
minidvblinux minidvblinux 5.4
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-260 The product stores a password in a configuration file that might be accessible to actors who do not know the password.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The provided resources do not contain information regarding the impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

This vulnerability in MiniDVBLinux 5.4 allows remote attackers to download sensitive system configuration files without authentication by exploiting a backup download endpoint. By sending a GET request with 'action=getconfig', an attacker can retrieve a complete system configuration archive that contains sensitive credentials.

Impact Analysis

The vulnerability can lead to unauthorized access to sensitive system configuration data, including credentials. This can compromise system security, potentially allowing attackers to gain further access or control over the affected system.

Detection Guidance

This vulnerability can be detected by sending an unauthenticated HTTP GET request to the vulnerable backup endpoint with the parameter 'action=getconfig'. For example, you can use the following curl command to test if the system is vulnerable: curl -v http://<target-ip>/tpl/setup/Backup/Edit backup/51_download_backup.sh?action=getconfig If the system responds with a compressed configuration archive, it is vulnerable. Extracting the archive will reveal sensitive configuration files such as /etc/passwd. Monitoring network traffic for such GET requests to the backup endpoint can also help detect exploitation attempts. [2]

Mitigation Strategies

Immediate mitigation steps include restricting access to the vulnerable backup endpoint by implementing authentication and access controls to prevent unauthenticated downloads. If possible, disable or restrict the backup download functionality until a patch or update is available. Network-level controls such as firewall rules can be used to block external access to the backup endpoint URL path. Monitoring and alerting on suspicious GET requests to the backup endpoint can also help detect exploitation attempts early. [1, 4]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2023-53770. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart