CVE-2023-2799

🗓️ 18 May 2023 15:31:03Reported by VulDBType

A problematic vulnerability in cnoa OA up to 5.1.1.5 allows manipulation of /index.php?app=main&func=passport&action=login, leading to the use of hard-coded password

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2023-2799	18 May 202320:33	–	circl
CNNVD	cnoa OA 安全漏洞	18 May 202300:00	–	cnnvd
Cvelist	CVE-2023-2799 cnoa OA hard-coded password	18 May 202315:31	–	cvelist
EUVD	EUVD-2023-34254	3 Oct 202520:07	–	euvd
NVD	CVE-2023-2799	18 May 202316:15	–	nvd
OSV	CVE-2023-2799	18 May 202316:15	–	osv
Prion	Hardcoded credentials	18 May 202316:15	–	prion
Positive Technologies	PT-2023-21470 · Cnoa Oa · Cnoa Oa	18 May 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-2799	23 May 202503:34	–	redhatcve
Vulnrichment	CVE-2023-2799 cnoa OA hard-coded password	18 May 202315:31	–	vulnrichment

NVD

Vulners

Node

cnoa_oa_project cnoa_oaRange≤5.1.1.5

[
  {
    "vendor": "cnoa",
    "product": "OA",
    "versions": [
      {
        "version": "5.1.1.0",
        "status": "affected"
      },
      {
        "version": "5.1.1.1",
        "status": "affected"
      },
      {
        "version": "5.1.1.2",
        "status": "affected"
      },
      {
        "version": "5.1.1.3",
        "status": "affected"
      },
      {
        "version": "5.1.1.4",
        "status": "affected"
      },
      {
        "version": "5.1.1.5",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/Peanut886/Vulnerability/blob/main/webray.com.cn/The-default-password-vulnerability-exists-in-the-intelligent-cooperative-office-system.md
github	www.github.com/Peanut886/Vulnerability/blob/main/imgs/2023-Guangzhou%20Xiezhong%20Software%20Technology%20Co.%2C%20LTD/2023-04-10(2).jpg

17 Jun 2026 05:53Current

7.1High risk

Vulners AI Score7.1

CVSS 3.16.3 - 9.8

CVSS 25.8

CVSS 36.3

EPSS0.00815

SSVC

CWE-259

vulnerability cnoa oa security hard-coded password cve-2023-2799