CVE-2023-4094
Weak authentication vulnerability in Fujitsu Arconte Áurea
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 6.5EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
19 sep 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
ARCONTE Aurea's authentication system, in its 1.5.0.0 version, could allow an attacker to make incorrect access requests in order to block each legitimate account and cause a denial of service. In addition, a resource has been identified that could allow circumventing the attempt limit set in the login form.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
Productos afectados
Fujitsu · Arconte Áurea¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →