Vulnerability Details CVE-2023-44031
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitive files in insecure locations via a crafted POST request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.5%
CVSS Severity
CVSS v3 Score 7.5
References
- http://seclists.org/fulldisclosure/2024/Jan/43
- https://packetstormsecurity.com/files/176841/Reprise-License-Manager-15.1-Privilege-Escalation-File-Write.html
- http://seclists.org/fulldisclosure/2024/Jan/43
- https://packetstormsecurity.com/files/176841/Reprise-License-Manager-15.1-Privilege-Escalation-File-Write.html
Products affected by CVE-2023-44031
-
cpe:2.3:a:reprisesoftware:reprise_license_manager:15.1
-
cpe:2.3:a:reprisesoftware:reprise_license_manager:15.2