CVE-2023-5913 Vulnerability Details
/
/
/
CVE-2023-5913 Metadata Quick Info
CVE Published: 08/11/2023 |
CVE Updated: 04/09/2024 |
CVE Year: 2023
Source: OpenText |
Vendor: opentext |
Product: Fortify ScanCentral DAST
Status : PUBLISHED
CVE-2023-5913 Description
Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The vulnerability could be exploited to gain elevated privileges.This issue affects Fortify ScanCentral DAST versions 21.1, 21.2, 21.2.1, 22.1, 22.1.1, 22.2, 23.1.
Metrics
CVSS Version: 3.1 |
Base Score: 8.2 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
l➤ Exploitability Metrics:
Attack Vector (AV)* NETWORK
Attack Complexity (AC)* LOW
Privileges Required (PR)* NONE
User Interaction (UI)* NONE
Scope (S)* UNCHANGED
l➤ Impact Metrics:
Confidentiality Impact (C)* HIGH
Integrity Impact (I)* LOW
Availability Impact (A)* NONE
Weakness Enumeration (CWE)
CWE-ID: CWE-266
CWE Name: CWE-266 Incorrect Privilege Assignment
Source: opentext
Common Attack Pattern Enumeration and Classification (CAPEC)
CAPEC-ID:
CAPEC Description: Could lead to gaining elevated privileges