← voltar
CVE-2023-41088

Cleartext Transmission of Sensitive Information in DEXMA DEXGate

CVSS 6.3 MEDIUMEPSS 0.2%CWE-319
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 6.3EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
19 out 2023Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
The affected product is vulnerable to a cleartext transmission of sensitive information vulnerability, which may allow an attacker with access to the network, where clients have access to the DexGate server, could capture traffic. The attacker can later us the information within it to access the application.
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
Produtos afetados
DEXMA · DexGate

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.cisa.gov/news-events/ics-advisories/icsa-23-271-02