CVSS 3.1 Score 6.5 of 10 (medium)


Published Sep 5, 2023
Updated: Sep 8, 2023
CWE ID 200


CVE-2023-32271 is an information disclosure vulnerability found in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. This vulnerability can be exploited by sending a series of specially crafted network requests, leading to the disclosure of sensitive information. The affected products are Open Automation Software OAS Platform v18.00.0072. To remediate this vulnerability, it is recommended to update to a patched version provided by the vendor. The potential danger posed by this vulnerability is high, as it allows attackers to gain access to sensitive information, compromising the confidentiality of an organization's data.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-32271 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options