How severe is CVE-2023-33730?

CVE-2023-33730 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2023-33730

Name: escan_management_console
Author: escanav

9.8CRITICAL

Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user

Published: 5/31/2023Updated: 1/10/2025

Description

Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user in plain text format.

AI AnalysisPowered by AI

Affected Products

escanavescan_management_console

14.0.1400.2281

References

https://github.com/sahiloj/CVE-2023-33730/blob/main/CVE-2023-33730.md
ExploitThird Party Advisory
https://github.com/sahiloj/CVE-2023-33730/blob/main/CVE-2023-33730.md
ExploitThird Party Advisory