Lucene search

[email protected]NVD:CVE-2023-2737

HistoryAug 16, 2023 - 4:15 p.m.

CVE-2023-2737

2023-08-1616:15:10

CWE-276

[email protected]

web.nvd.nist.gov

improper log permissions

authenticated attacker

denial of service

safenet authentication service

windows

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

10.3%

JSON

Improper log permissions in SafeNet Authentication Service Version 3.4.0 on Windows allows an authenticated attacker to cause a denial of service via local privilege escalation.

Affected configurations

Nvd

Node

microsoftwindowsMatch-

AND

thalesgroupsafenet_authentication_serviceMatch3.4.0

VendorProductVersionCPE
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
thalesgroupsafenet_authentication_service3.4.0cpe:2.3:a:thalesgroup:safenet_authentication_service:3.4.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
thalesgroup	safenet_authentication_service	3.4.0	cpe:2.3:a:thalesgroup:safenet_authentication_service:3.4.0:::::::*

References

supportportal.thalesgroup.com/csm?id=kb_article_view&sys_kb_id=08f460ba47bba550c0e42e61e36d432f&sysparm_article=KB0027485

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

10.3%

JSON

Related for NVD:CVE-2023-2737

cve1 cvelist1 prion1