Lucene search
TR-CERTCVE-2023-5983HistoryNov 22, 2023 - 12:15 p.m.
CVE-2023-5983
2023-11-2212:15:22
CWE-359
TR-CERT
web.nvd.nist.gov
19
cve-2023-5983
sensitive information exposure
unauthorized actor
botanik software
pharmacy automation
vulnerability
data retrieval
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
37.2%
Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Botanik Software Pharmacy Automation allows Retrieve Embedded Sensitive Data.This issue affects Pharmacy Automation: before 2.1.133.0.
Affected configurations
Node
botanikyazilimpharmacy_automationRange<2.1.133.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| botanikyazilim | pharmacy_automation | * | cpe:2.3:a:botanikyazilim:pharmacy_automation:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Pharmacy Automation",
"vendor": "Botanik Software",
"versions": [
{
"lessThan": "2.1.133.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]References
Related
prion
prion
Code injection
2023-11-22 12:15:00
nvd
nvd
CVE-2023-5983
2023-11-22 12:15:22
cvelist
cvelist
CVE-2023-5983 Information Disclosure in Botanik Software Pharmacy Automation
2023-11-22 11:54:04
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
37.2%
Related for CVE-2023-5983