CVE-2023-4096

Summary

CVE-2023-4096 is a vulnerability affecting Fujitsu Arconte Áurea version 1.5.0.0. This issue involves a weak password recovery mechanism, enabling an attacker to initiate a brute force attack on emailed PIN numbers. Successful exploitation allows the attacker to change the password of a legitimate user without their authorization. This vulnerability poses a significant risk to users, as their accounts can be compromised through unauthorized password modifications. Organizations running this software version are strongly advised to apply the necessary patches or updates to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.