LOW🇬🇧 English

CVE-2023-29062

CVSS 3.8v3.1pub. 2023-11-28upd. 2024-11-21

The Operating System hosting the FACSChorus application is configured to allow transmission of hashed user credentials upon user action without adequately validating the identity of the requested resource. This is possible through the use of LLMNR, MBT-NS, or MDNS and will result in NTLMv2 hashes being sent to a malicious entity position on the local network. These hashes can subsequently be attacked through brute force and cracked if a weak password is used. This attack would only apply to domain joined systems.

oryginał EN
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
  • Bd Facschorus

    APP
    Bd
    3.03.15.05.1
  • HP Z2 Tower G5

    HW
    Hp
    wszystkie wersje
  • HP Z2 Tower G9

    HW
    Hp
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2023-29060MEDIUM5.4ten sam produkt

The FACSChorus workstation operating system does not restrict what devices can interact with its USB ports. If...

CVE-2023-29061MEDIUM5.2ten sam produkt

There is no BIOS password on the FACSChorus workstation. A threat actor with physical access to the workstatio...

CVE-2023-29064MEDIUM4.1ten sam produkt

The FACSChorus software contains sensitive information stored in plaintext. A threat actor could gain hardcode...

CVE-2023-29065MEDIUM4.1ten sam produkt

The FACSChorus software database can be accessed directly with the privileges of the currently logged-in user....

CVE-2023-29063LOW2.4ten sam produkt

The FACSChorus workstation does not prevent physical access to its PCI express (PCIe) slots, which could allow...

CVE-2023-29062 — LOW 3.8 | CVEbaza.pl