Lucene search

[email protected]CVE-2023-6400

HistoryMar 27, 2024 - 1:15 p.m.

CVE-2023-6400

2024-03-2713:15:46

CWE-863

[email protected]

web.nvd.nist.gov

opentext

zenworks configuration management

unauthorized use

7.4 High

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

8.8%

JSON

Incorrect Authorization vulnerability in OpenText™ ZENworks Configuration Management (ZCM) allows Unauthorized Use of Device Resources.This issue affects ZENworks Configuration Management (ZCM) versions: 2020 update 3, 23.3, and 23.4.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "ZENworks Configuration Management (ZCM)",
    "vendor": "OpenText™",
    "versions": [
      {
        "status": "affected",
        "version": "2020 update 3"
      },
      {
        "status": "affected",
        "version": "23.3"
      },
      {
        "status": "affected",
        "version": "23.4"
      }
    ]
  }
]

References

portal.microfocus.com/s/article/KM000027630?language=en_US

7.4 High

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

8.8%

JSON

Related for CVE-2023-6400

nvd1 cvelist1