CVE-2023-38751
CVE-2023-38751
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
09 ago 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Improper authorization vulnerability in Special Interest Group Network for Analysis and Liaison versions 4.4.0 to 4.7.7 allows the authorized API users to view the organization information of the information receiver that is set as "non-disclosure" in the information provision operation.
Productos afectados
Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) · Special Interest Group Network for Analysis and Liaison¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →