Lucene search
VULSecCVELIST:CVE-2023-40735HistoryAug 21, 2023 - 11:35 a.m.
CVE-2023-40735 Butterfly Button Project - Sensitive Information Disclosure
2023-08-2111:35:44
CWE-200
VULSec
www.cve.org
4
cve-2023-40735
sensitive information disclosure
unauthorized actor
architecture flaw
plausible deniability
confidentiality
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
47.2%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in BUTTERFLY BUTTON PROJECT - BUTTERFLY BUTTON (Architecture flaw) allows loss of plausible deniability and confidentiality.
This issue affects BUTTERFLY BUTTON: As of 2023-08-21.
CNA Affected
[
{
"collectionURL": "https://github.com/TheButterflySDK",
"defaultStatus": "affected",
"modules": [
"Architecture"
],
"product": "BUTTERFLY BUTTON",
"vendor": "BUTTERFLY BUTTON PROJECT",
"versions": [
{
"status": "affected",
"version": "As of 2023-08-21"
}
]
}
]Related
nvd
nvd
CVE-2023-40735
2023-08-21 12:15:09
cve
cve
CVE-2023-40735
2023-08-21 12:15:09
prion
prion
Improper access control
2023-08-21 12:15:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
47.2%
Related for CVELIST:CVE-2023-40735