CVE-2023-37231

Summary

CVE-2023-37231 identifies a critical vulnerability in Loftware Spectrum prior to version 4.6 HF14, which utilizes a hard-coded password. This flaw allows unauthorized network access without requiring user interaction, posing significant risks to both confidentiality and integrity, with a CVSS base score of 9.8. Affected products include various deployments of Loftware Spectrum, which may experience high impacts on availability as well. Organizations are advised to remediate this vulnerability by upgrading to the latest version that addresses this issue. Failure to act could lead to severe security breaches and data exposure for affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.