CVE-2023-45912

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 18, 2023
Updated: Oct 25, 2023
CWE ID 200

Summary

CVE-2023-45912 is a vulnerability that affects WIPOTEC GmbH ComScale versions 4.3.29.21344 and 4.4.12.723. It allows unauthenticated attackers to read files from the underlying operating system and obtain directory listings due to a failure in validating user sessions. The vulnerability has a base severity score of 7.5, indicating a high level of risk, with a confidentiality impact rating of HIGH. The exploitability score is 3.9, suggesting that it is relatively easy for attackers to exploit this vulnerability remotely over a network without requiring any special privileges or user interaction. The potential danger posed by this vulnerability lies in unauthorized access to sensitive information stored on the affected systems. To remediate the issue, users should update their WIPOTEC ComScale installations to a patched version as soon as it becomes available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-45912 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options