4.6

CVE-2023-50443

Encrypted disks created by PRIMX CRYHOD for Windows before Q.2020.4 (ANSSI qualification submission) or CRYHOD for Windows before 2023.5 can be modified by an unauthenticated attacker to include a UNC reference so that it could trigger outbound network traffic from computers on which disks are opened.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PrimxCryhod Version < 2020.4
   MicrosoftWindows Version-
PrimxCryhod Version >= 2021.0 < 2021.3
   MicrosoftWindows Version-
PrimxCryhod Version >= 2023.0 < 2023.5
   MicrosoftWindows Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.32% 0.233
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 0.9 3.6
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://www.primx.eu/fr/blog/
Product
https://www.primx.eu/en/bulletins/security-bulletin-23B3093B/
Vendor Advisory