CVE-2023-32090

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 7, 2023

Updated: Aug 10, 2023

CWE ID 287

CWE ID 1393

Summary

CVE-2023-32090: The Pega platform, used by clients in versions 6.1 to 7.3.1, is found to have a vulnerability related to the use of default credentials. This issue may allow unauthorized access to affected systems, potentially leading to significant security risks and the need for urgent patches. Organizations utilizing the Pega platform are strongly advised to review their credentials and implement secure configurations as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Pega Platform

Affected Vendors

Pegasystems

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sQGg8J
https://www.cve.org/CVERecord?id=CVE-2023-32090
https://nvd.nist.gov/vuln/detail/CVE-2023-32090

Back to Vulnerability Database