CVE-2023-2622

Summary

CVE-2023-2622 is a vulnerability affecting the InspectSetup service endpoint through remote procedure calls (RPC). Authenticated clients can misuse this vulnerability to access and read arbitrary files on the MAIN Computer system, bypassing their authorization limits. The exploitation of this low-privilege client vulnerability could potentially lead to significant data exposure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.