CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-29656

An improper authorization vulnerability in Darktrace mobile app (Android) prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actions(block/unblock traffic) from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress traffic in the entire infrastructure where darktrace agents are deployed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.7%

CVSS Severity

CVSS v3 Score 6.1

References

https://darktrace.com
https://ramihub.github.io/
https://darktrace.com
https://ramihub.github.io/

Products affected by CVE-2023-29656

Darktrace » Threat Visualizer » Version: 6.0.0

cpe:2.3:a:darktrace:threat_visualizer:6.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29656

Products

Pricing

Contact Us