CVE-2023-6335

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Published Jan 16, 2024
Updated: Jan 23, 2024
CWE ID 59

Summary

CVE-2023-6335 is an Improper Link Resolution Before File Access ('Link Following') vulnerability found in HYPR Workforce Access on Windows. This vulnerability affects Workforce Access versions before 8.7. There are a total of 42 hits related to this vulnerability. The risk score for this vulnerability is 25, indicating a moderate level of risk. The base severity is rated as MEDIUM with a base score of 6.4. The attack vector is LOCAL and the privileges required are LOW, with no user interaction needed. The integrity impact is HIGH while the confidentiality impact is NONE. The availability impact is rated as LOW. To exploit this vulnerability, an attacker would need to have local access to the system. Organizations using affected versions of HYPR Workforce Access should update to version 8.7 or later to remediate this vulnerability and mitigate the potential risks associated with it.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-6335 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options