Lucene search

K
cve[email protected]CVE-2023-5443
HistoryOct 27, 2023 - 2:15 p.m.

CVE-2023-5443

2023-10-2714:15:08
CWE-1320
web.nvd.nist.gov
25
cve-2023-5443
vulnerability
edm informatics
e-invoice
account footprinting
nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.2%

Improper Protection for Outbound Error Messages and Alert Signals vulnerability in EDM Informatics E-invoice allows Account Footprinting.This issue affects E-invoice: before 2.1.

Affected configurations

NVD
Node
e-invoice_projecte-invoiceRange<2.1

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "E-invoice",
    "vendor": "EDM Informatics",
    "versions": [
      {
        "lessThan": "2.1",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.2%

Related for CVE-2023-5443