CVE-2023-43183

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Feb 3, 2024

Updated: Feb 13, 2024

Summary

CVE-2023-43183 is a newly disclosed access control vulnerability affecting Reprise License Manager v15.1. This issue permits read-only users to manipulate admin account passwords, enabling them to gain unauthorized administrative access. The flaw poses a significant risk, as hijacked admin accounts can lead to extensive unauthorized changes and potential data breaches. Reprise Software is encouraged to release a patch as soon as possible to mitigate this vulnerability. Until then, affected organizations should limit user privileges and closely monitor their license management systems for suspicious activity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/suNH_2
https://www.cve.org/CVERecord?id=CVE-2023-43183
https://nvd.nist.gov/vuln/detail/CVE-2023-43183

Back to Vulnerability Database

CVE-2023-43183

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations