CVE-2023-41965

High

Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the…

icscert·CWE-921·Published 2023-09-18

CVSS

7.5

EPSS

0.01

KEV

Exploits

Tags:unsupported-when-assigned

cve.orgen

162 chars

Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the authentication process.

NVDen

162 chars

Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the authentication process.

** NO COMPATIBLE CUANDO ESTÁ ASIGNADO ** El envío de algunas solicitudes en la aplicación web del dispositivo vulnerable permite obtener información debido a la falta de seguridad en el proceso de autenticación.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3.1	Primary	cve.org	7.5	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3.1	Secondary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N