CVE-2023-6259

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Feb 19, 2024
Updated: Feb 21, 2024
CWE ID 522
CWE ID 284

Summary

CVE-2023-6259 is a critical access control vulnerability affecting Brivo ACS100 and ACS300 systems from versions 5.2.4 to 6.2.4.3. The issue stems from insufficient protection of credentials, allowing unauthorized entities to initiate password recovery processes and bypass physical security measures. This exploit can lead to significant security risks and potential unauthorized access to secured areas.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share