5.3
CVE-2023-39731
- EPSS 0.19%
- Veröffentlicht 20.10.2023 00:15:14
- Zuletzt bearbeitet 21.11.2024 08:15:52
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe leakage of the client secret in Kaibutsunosato v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Line ≫ Kaibutsunosato Version13.6.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.409 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.