CVE-2023-6376
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2023-6376 is a cyber vulnerability that affects Henschen & Associates court document management software. The vulnerability arises from the insufficient randomization of file names for cached documents, which allows remote and unauthenticated attackers to gain access to restricted documents. The National Vulnerability Database rates the severity of this vulnerability as high, with a base score of 7.5 out of 10. It poses a significant danger to organizations as it can lead to unauthorized access to sensitive information, potentially compromising confidentiality. Remediation measures should include updating the software to address the randomization issue and implementing proper access controls and authentication mechanisms.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions