Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2023-28345
HistoryMay 30, 2023 - 12:00 a.m.

CVE-2023-28345

2023-05-3000:00:00
mitre
www.cve.org
cve-2023-28345
cleartext password exposure
api endpoint vulnerability
teacher console
physical access risk
student machine vulnerability

5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.7%

JSON

An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application exposes the teacher’s Console password in cleartext via an API endpoint accessible from localhost. Attackers with physical access to the Teacher Console can open a web browser, navigate to the affected endpoint and obtain the teacher’s password. This enables them to log into the Teacher Console and begin trivially attacking student machines.

Related

cve 1
prion 1
nvd 1
cve
cve
CVE-2023-28345
2023-05-31 00:15:09
prion
prion
Default credentials
2023-05-31 00:15:00
nvd
nvd
CVE-2023-28345
2023-05-31 00:15:09

5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.7%

JSON
Related for CVELIST:CVE-2023-28345
cve1prion1nvd1