CVE-2023-27315

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 12, 2023

Updated: Oct 16, 2023

CWE ID 256

CWE ID 522

Summary

CVE-2023-27315 is a vulnerability affecting SnapGathers versions below 4.9. This issue grants local authenticated attackers the ability to access plaintext domain user credentials, posing a significant security risk. Attackers can exploit this vulnerability by gaining unauthorized access to sensitive information, potentially leading to further system compromise. To mitigate this risk, it is recommended that users update their SnapGathers software to the latest available version as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s8r5ee
https://www.cve.org/CVERecord?id=CVE-2023-27315
https://nvd.nist.gov/vuln/detail/CVE-2023-27315

Back to Vulnerability Database

CVE-2023-27315

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations