CVE-2023-33730
9.8CRITICALPrivilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user
Опубликовано: 5/31/2023Обновлено: 1/10/2025
Описание
Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user in plain text format.
ИИ-АнализНа базе ИИ
Затронутые продукты
escanavescan_management_console
14.0.1400.2281
Ссылки
- https://github.com/sahiloj/CVE-2023-33730/blob/main/CVE-2023-33730.mdExploitThird Party Advisory
- https://github.com/sahiloj/CVE-2023-33730/blob/main/CVE-2023-33730.mdExploitThird Party Advisory