CVSS Score of 10 (low)


Published Jun 22, 2023
Updated: Jun 30, 2023
CWE ID 200


CVE-2023-2991 is an information disclosure vulnerability affecting Fortra Globalscape EFT's administration server. The vulnerability allows remote attackers to determine the serial number of the hard drive on which Globalscape is installed by sending a "trial extension request" message. The affected product is ErfLSA. To remediate this vulnerability, it is recommended to update to the latest version or apply the available patch provided by the vendor. The potential danger posed to organizations is considered medium, with a base score of 5.3 out of 10 according to NVD.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-2991 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options