Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-35067
HistoryJul 25, 2023 - 7:15 a.m.

CVE-2023-35067

2023-07-2507:15:10
CWE-256
CWE-522
[email protected]
web.nvd.nist.gov
2
vulnerability
infodrom software
e-invoice approval system
plaintext storage
password
sensitive strings
executable
cve-2023-35067

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

49.6%

JSON

Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable.This issue affects E-Invoice Approval System: before v.20230701.

Affected configurations

Nvd
Node
infodrome-invoice_approval_systemRange<20230701
VendorProductVersionCPE
infodrome-invoice_approval_system*cpe:2.3:a:infodrom:e-invoice_approval_system:*:*:*:*:*:*:*:*

Related

cve 1
cvelist 1
prion 1
cve
cve
CVE-2023-35067
2023-07-25 07:15:10
cvelist
cvelist
CVE-2023-35067 Plaintext Storage of a Password in Infodrom Sofwares E-Invoice Approval System
2023-07-25 06:07:32
prion
prion
Design/Logic Flaw
2023-07-25 07:15:00

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

49.6%

JSON
Related for NVD:CVE-2023-35067
cve1cvelist1prion1