CVE-2023-45083

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Dec 5, 2023

Updated: Dec 12, 2023

CWE ID 269

Summary

CVE-2023-45083 is an Improper Privilege Management vulnerability affecting HyperCloud management plane. An authenticated admin-level user can delete the "admin" or "serveradmin" accounts, disrupting subsequent authentication attempts. This issue poses a significant risk, as it impacts all HyperCloud versions up to and excluding 2.1. Successful exploitation could lead to system access denial.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SoftIron

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s4uSEl
https://www.cve.org/CVERecord?id=CVE-2023-45083
https://nvd.nist.gov/vuln/detail/CVE-2023-45083

Back to Vulnerability Database

CVE-2023-45083

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations