Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-34797

Published: 15/06/2023 Updated: 26/06/2023
CVSS v3 Base Score: 5.4 | Impact Score: 2.5 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Cwx

Vulnerability Summary

Broken access control in the Registration page (/Registration.aspx) of Termenos CWX v8.5.6 allows malicious users to access sensitive information.

Vulnerable Product Search on Vulmon Subscribe to Product

temenos cwx 8.5.6

Github Repositories

https://github.com/WhiteBearVN/CWX-Registration-Broken-Access-Control

CWX Register Broken Access Control Report: November 2022 Affected: Tested on v856 Fix: No information Credit: WhiteBearVN_ ID: CVE-2022-45287, CVE-2023-34797 Description Temenos CWX has an Broken Access Control vulnerability in /Registrationaspx, leak serial number and can be updated information, welcome message at home page Steps to reproduce User login, we will not see

References

CWE-732https://github.com/WhiteBearVN/CWX-Registration-Broken-Access-Controlhttps://nvd.nist.govhttps://github.com/WhiteBearVN/CWX-Registration-Broken-Access-Control
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook