CVE-2023-3050

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 13, 2023

Updated: Jun 22, 2023

CWE ID 784

CWE ID 565

Summary

CVE-2023-3050 is a newly disclosed vulnerability in TMT Lockcell's security decision process. The issue arises due to the application's lack of validation and integrity checking on cookies, enabling an attacker to carry out privilege abuse and authentication bypass. This vulnerability exists in Lockcell versions prior to 15, posing a significant risk to affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rn6u6f
https://www.cve.org/CVERecord?id=CVE-2023-3050
https://nvd.nist.gov/vuln/detail/CVE-2023-3050

Back to Vulnerability Database

CVE-2023-3050

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations