exploitDog

CVE-2023-31300

Опубликовано: 29 дек. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via transmission of unencrypted, cleartext credentials during Password Reset feature.

Ссылки

https://herolab.usd.de/en/security-advisories/usd-2022-0057/
Third Party Advisory
https://herolab.usd.de/en/security-advisories/usd-2022-0057/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sesami:cash_point_\&_transport_optimizer:6.3.8.6.718:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00103

Низкий

7.5 High

CVSS3

Дефекты

CWE-319

CWE-319

Связанные уязвимости

GHSA-652f-58jv-j9fp

CVSS3: 7.5

github

около 2 лет назад

An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via transmission of unencrypted, cleartext credentials during Password Reset feature.

EPSS

Процентиль: 29%

0.00103

Низкий

7.5 High

CVSS3

Дефекты

CWE-319

CWE-319