Lucene search
57dba5dd-1a03-47f6-8b36-e84e47d335d8NVD:CVE-2023-6259HistoryFeb 19, 2024 - 10:15 p.m.
CVE-2023-6259
2024-02-1922:15:48
CWE-284
CWE-522
57dba5dd-1a03-47f6-8b36-e84e47d335d8
web.nvd.nist.gov
insufficiently protected credentials
improper access control
bypassing physical security
brivo acs100
brivo acs300
password recovery exploitation
cve-2023-6259
7.1 High
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.2%
Insufficiently Protected Credentials, : Improper Access Control vulnerability in Brivo ACS100, ACS300 allows Password Recovery Exploitation, Bypassing Physical Security.This issue affects ACS100, ACS300: from 5.2.4 before 6.2.4.3.
Related
cvelist
cvelist
CVE-2023-6259 Local Access to Sensitive Data in Brivo ACS100 and ACS300
2024-02-19 21:28:01
cve
cve
CVE-2023-6259
2024-02-19 22:15:48
prion
prion
Improper access control
2024-02-19 22:15:00
7.1 High
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.2%
Related for NVD:CVE-2023-6259