CVE-2023-50443

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Dec 13, 2023

Updated: Dec 20, 2023

Summary

CVE-2023-50443 is a vulnerability affecting PRIMX CRYHOD for Windows before Q.2020.4 (ANSSI qualification submission) and CRYHOD for Windows before 2023.5. An attacker can exploit this issue by modifying encrypted disks to include a UNC reference, triggering outbound network traffic from computers that open the affected disks, even without authentication. This vulnerability poses a risk of data exfiltration and unauthorized network access. Users are advised to update CRYHOD as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Prime Utilities Bhd

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/twR4SG
https://www.cve.org/CVERecord?id=CVE-2023-50443
https://nvd.nist.gov/vuln/detail/CVE-2023-50443

Back to Vulnerability Database

CVE-2023-50443

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations