Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2023-24069
HistoryJan 23, 2023 - 12:00 a.m.

CVE-2023-24069

2023-01-2300:00:00
mitre
www.cve.org
signal desktop
cached attachments
file recovery
vulnerability
local access

3.9 Low

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to obtain potentially sensitive attachments sent in messages from the attachments.noindex directory. Cached attachments are not effectively cleared. In some cases, even after a self-initiated file deletion, an attacker can still recover the file if it was previously replied to in a conversation. (Local filesystem access is needed by the attacker.) NOTE: the vendor disputes the relevance of this finding because the product is not intended to protect against adversaries with this degree of local access.

Related

prion 1
vulnrichment 1
nvd 1
cve 1
prion
prion
Arbitrary file deletion
2023-01-23 07:15:00
vulnrichment
vulnrichment
CVE-2023-24069
2023-01-23 00:00:00
nvd
nvd
CVE-2023-24069
2023-01-23 07:15:11
cve
cve
CVE-2023-24069
2023-01-23 07:15:11

3.9 Low

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON
Related for CVELIST:CVE-2023-24069
prion1vulnrichment1nvd1cve1