CVE-2023-44031

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 3, 2024

Updated: Feb 13, 2024

CWE ID 284

Summary

CVE-2023-44031 is a vulnerability affecting Reprise License Manager v15.1. This issue arises due to incorrect access control in the software. An attacker can exploit this flaw by sending a crafted POST request to save sensitive files in insecure locations, potentially leading to data leakage. The vulnerability could be exploited remotely, making it a significant risk for organizations using this software. It is recommended that users promptly apply the available patch or workaround provided by the vendor to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/syXvLg
https://www.cve.org/CVERecord?id=CVE-2023-44031
https://nvd.nist.gov/vuln/detail/CVE-2023-44031

Back to Vulnerability Database

CVE-2023-44031

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations