CVE-2023-33730
9.8CRITICALPrivilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user
Publicado: 5/31/2023Actualizado: 1/10/2025
Descripción
Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user in plain text format.
Análisis IAImpulsado por IA
Productos Afectados
escanavescan_management_console
14.0.1400.2281
Referencias
- https://github.com/sahiloj/CVE-2023-33730/blob/main/CVE-2023-33730.mdExploitThird Party Advisory
- https://github.com/sahiloj/CVE-2023-33730/blob/main/CVE-2023-33730.mdExploitThird Party Advisory