exploitDog

CVE-2023-45892

Опубликовано: 02 янв. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue discovered in the Order and Invoice pages in Floorsight Insights Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information.

Ссылки

https://github.com/Oracle-Security/CVEs/blob/main/FloorsightSoftware/CVE-2023-45892.md
Third Party Advisory
https://github.com/Oracle-Security/CVEs/blob/main/FloorsightSoftware/CVE-2023-45892.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:floorsightsoftware:insight:*:*:*:*:*:*:*:*

Версия до q3_2023 (включая)

EPSS

Процентиль: 77%

0.01006

Низкий

7.5 High

CVSS3

Дефекты

CWE-639

CWE-639

Связанные уязвимости

GHSA-p5jr-rfj3-98f5

CVSS3: 7.5

github

около 2 лет назад

An issue discovered in the Order and Invoice pages in Floorsight Insights Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information.

EPSS

Процентиль: 77%

0.01006

Низкий

7.5 High

CVSS3

Дефекты

CWE-639

CWE-639