Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveJpcertCVE-2023-39415
HistoryAug 18, 2023 - 10:15 a.m.

CVE-2023-39415

2023-08-1810:15:11
CWE-287
jpcert
web.nvd.nist.gov
43
cve-2023-39415
vulnerability
improper authentication
proself enterprise
proself standard
proself gateway
proself mail sanitize
remote access

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.7

Confidence

High

EPSS

0.002

Percentile

57.6%

JSON

Improper authentication vulnerability in Proself Enterprise/Standard Edition Ver5.61 and earlier, Proself Gateway Edition Ver1.62 and earlier, and Proself Mail Sanitize Edition Ver1.07 and earlier allow a remote unauthenticated attacker to log in to the product’s Control Panel and perform an unintended operation.

Affected configurations

Nvd
Vulners
Node
northgridproselfRange1.07mail_sanitize
OR
northgridproselfRange1.62gateway
OR
northgridproselfRange5.61enterprise
OR
northgridproselfRange5.61standard
VendorProductVersionCPE
northgridproself*cpe:2.3:a:northgrid:proself:*:*:*:*:mail_sanitize:*:*:*
northgridproself*cpe:2.3:a:northgrid:proself:*:*:*:*:gateway:*:*:*
northgridproself*cpe:2.3:a:northgrid:proself:*:*:*:*:enterprise:*:*:*
northgridproself*cpe:2.3:a:northgrid:proself:*:*:*:*:standard:*:*:*

CNA Affected

[
  {
    "vendor": "North Grid Corporation",
    "product": "Proself Enterprise/Standard Edition",
    "versions": [
      {
        "version": "Ver5.61 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "North Grid Corporation",
    "product": "Proself Gateway Edition",
    "versions": [
      {
        "version": "Ver1.62 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "North Grid Corporation",
    "product": "Proself Mail Sanitize Edition",
    "versions": [
      {
        "version": "Ver1.07 and earlier",
        "status": "affected"
      }
    ]
  }
]

Related

nvd 1
prion 1
cvelist 1
jvn 1
nvd
nvd
CVE-2023-39415
2023-08-18 10:15:11
prion
prion
Authentication flaw
2023-08-18 10:15:00
cvelist
cvelist
CVE-2023-39415
2023-08-18 09:26:24
jvn
jvn
JVN#19661362: Multiple vulnerabilities in Proself
2023-08-18 00:00:00

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.7

Confidence

High

EPSS

0.002

Percentile

57.6%

JSON
Related for CVE-2023-39415
nvd1prion1cvelist1jvn1