CVE-2023-30716

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 6, 2023
Updated: Nov 7, 2023

Summary

CVE-2023-30716 is an access control vulnerability affecting SVCAgent, a component of SMR (Security Management and Reporting) software, prior to the Sep-2023 Release 1. This issue grants unauthorized access to attackers, enabling them to execute specific commands, potentially leading to unintended system modifications or data breaches. The vulnerability arises due to insufficient access checks within SVCAgent, posing a significant risk to affected systems. Organizations using the affected software version are advised to apply the latest patch to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share