Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-31192
HistoryOct 12, 2023 - 4:15 p.m.

CVE-2023-31192

2023-10-1216:15:11
CWE-457
CWE-908
[email protected]
web.nvd.nist.gov
information disclosure
clientconnect
network packet
sensitive information
man-in-the-middle

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

4.9 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.6%

JSON

An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther VPN 5.01.9674. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.

Affected configurations

NVD
Node
softethervpnMatch5.01.9674

Related

talos 1
cvelist 1
cve 1
prion 1
freebsd 1
jvn 1
nessus 1
talosblog 1
talos
talos
SoftEther VPN ClientConnect() information disclosure vulnerability
2023-10-12 00:00:00
cvelist
cvelist
CVE-2023-31192
2023-10-12 15:27:51
cve
cve
CVE-2023-31192
2023-10-12 16:15:11
prion
prion
Information disclosure
2023-10-12 16:15:00
freebsd
freebsd
SoftEtherVPN -- multiple vulnerabilities
2023-06-30 00:00:00
jvn
jvn
JVN#64316789: Multiple vulnerabilities in SoftEther VPN and PacketiX VPN
2023-07-03 00:00:00
nessus
nessus
FreeBSD : SoftEtherVPN -- multiple vulnerabilities (d821956f-1753-11ee-ad66-1c61b4739ac9)
2023-06-30 00:00:00
talosblog
talosblog
9 vulnerabilities found in VPN software, including 1 critical issue that could lead to remote code execution
2023-10-25 16:00:26

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

4.9 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.6%

JSON
Related for NVD:CVE-2023-31192
talos1cvelist1cve1prion1freebsd1jvn1nessus1talosblog1