CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34353

An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted network sniffing can lead to decryption of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.3%

CVSS Severity

CVSS v3 Score 7.5

References

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1776
https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1776
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1776
https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1776

Products affected by CVE-2023-34353

Openautomationsoftware » Oas Platform » Version: 18.00.0072

cpe:2.3:a:openautomationsoftware:oas_platform:18.00.0072

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34353

Products

Pricing

Contact Us