exploitDog

CVE-2023-41088

Опубликовано: 19 окт. 2023

Источник: nvd

CVSS3: 6.3

CVSS3: 6.5

EPSS Низкий

Описание

The affected product is vulnerable to a cleartext transmission of sensitive information vulnerability, which may allow an attacker with access to the network, where clients have access to the DexGate server, could capture traffic. The attacker can later us the information within it to access the application.

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-23-271-02
Third Party Advisory
US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-271-02
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dexma:dexgate:20130114:*:*:*:*:*:*:*

EPSS

Процентиль: 25%

0.00087

Низкий

6.3 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-319

CWE-319

Связанные уязвимости

GHSA-wxgq-cmv5-57qx

CVSS3: 6.3

github

больше 2 лет назад

The affected product is vulnerable to a cleartext transmission of sensitive information vulnerability, which may allow an attacker with access to the network, where clients have access to the DexGate server, could capture traffic. The attacker can later us the information within it to access the application.

EPSS

Процентиль: 25%

0.00087

Низкий

6.3 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-319

CWE-319