9.8
CVE-2023-5913
- EPSS 0.22%
- Published 08.11.2023 17:15:08
- Last modified 21.11.2024 08:42:45
- Source security@opentext.com
- Teams watchlist Login
- Open Login
Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The vulnerability could be exploited to gain elevated privileges.This issue affects Fortify ScanCentral DAST versions 21.1, 21.2, 21.2.1, 22.1, 22.1.1, 22.2, 23.1.
Data is provided by the National Vulnerability Database (NVD)
Microfocus ≫ Fortify Scancentral Dast Version21.1
Microfocus ≫ Fortify Scancentral Dast Version21.2
Microfocus ≫ Fortify Scancentral Dast Version21.2.1
Microfocus ≫ Fortify Scancentral Dast Version22.1
Microfocus ≫ Fortify Scancentral Dast Version22.1.1
Microfocus ≫ Fortify Scancentral Dast Version22.2
Microfocus ≫ Fortify Scancentral Dast Version23.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.22% | 0.446 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| security@opentext.com | 8.2 | 3.9 | 4.2 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
|
CWE-266 Incorrect Privilege Assignment
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.