CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29446

An improper input validation vulnerability has been discovered that could allow an adversary to inject a UNC path via a malicious project file. This allows an adversary to capture NLTMv2 hashes and potentially crack them offline.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.7%

CVSS Severity

CVSS v3 Score 4.7

References

Products affected by CVE-2023-29446

Ptc » Kepware Kepserverex » Version: 6.0.2107.0

cpe:2.3:a:ptc:kepware_kepserverex:6.0.2107.0
Ptc » Kepware Kepserverex » Version: 6.12

cpe:2.3:a:ptc:kepware_kepserverex:6.12
Ptc » Kepware Kepserverex » Version: 6.14

cpe:2.3:a:ptc:kepware_kepserverex:6.14
Ptc » Kepware Kepserverex » Version: 6.14.263.0

cpe:2.3:a:ptc:kepware_kepserverex:6.14.263.0
Ptc » Kepware Kepserverex » Version: 6.9

cpe:2.3:a:ptc:kepware_kepserverex:6.9
Ptc » Thingworx Industrial Connectivity » Version: 8.0

cpe:2.3:a:ptc:thingworx_industrial_connectivity:8.0
Ptc » Thingworx Industrial Connectivity » Version: 8.5

cpe:2.3:a:ptc:thingworx_industrial_connectivity:8.5
Ptc » Thingworx Kepware Server » Version: 6.10.623.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.10.623.0
Ptc » Thingworx Kepware Server » Version: 6.10.659.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.10.659.0
Ptc » Thingworx Kepware Server » Version: 6.11.718.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.11.718.0
Ptc » Thingworx Kepware Server » Version: 6.11.764.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.11.764.0
Ptc » Thingworx Kepware Server » Version: 6.12

cpe:2.3:a:ptc:thingworx_kepware_server:6.12
Ptc » Thingworx Kepware Server » Version: 6.12.325.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.12.325.0
Ptc » Thingworx Kepware Server » Version: 6.12.361.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.12.361.0
Ptc » Thingworx Kepware Server » Version: 6.13.250.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.13.250.0
Ptc » Thingworx Kepware Server » Version: 6.13.266.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.13.266.0
Ptc » Thingworx Kepware Server » Version: 6.14

cpe:2.3:a:ptc:thingworx_kepware_server:6.14
Ptc » Thingworx Kepware Server » Version: 6.14.263.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.14.263.0
Ptc » Thingworx Kepware Server » Version: 6.8

cpe:2.3:a:ptc:thingworx_kepware_server:6.8
Ptc » Thingworx Kepware Server » Version: 6.8.796.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.8.796.0
Ptc » Thingworx Kepware Server » Version: 6.8.838.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.8.838.0
Ptc » Thingworx Kepware Server » Version: 6.8.875.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.8.875.0
Ptc » Thingworx Kepware Server » Version: 6.9

cpe:2.3:a:ptc:thingworx_kepware_server:6.9
Ptc » Thingworx Kepware Server » Version: 6.9.572.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.9.572.0
Ptc » Thingworx Kepware Server » Version: 6.9.584.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.9.584.0
Ptc » Thingworx Kepware Server » Version: 6.9.636.0

cpe:2.3:a:ptc:thingworx_kepware_server:6.9.636.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29446

Products

Pricing

Contact Us