Lucene search
PRIOn knowledge basePRION:CVE-2023-46595HistoryNov 02, 2023 - 8:15 a.m.
Design/Logic Flaw
2023-11-0208:15:00
PRIOn knowledge base
www.prio-n.com
13
net-ntlm
html injection
fireflow
visualflow
workflow editor
domain credentials
relay attacks
vulnerability
security fix
Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor allows an attacker to obtain victim’s domain credentials and Net-NTLM hash which can lead to relay domain attacks. Fixed in A32.20 (b570 or above), A32.50 (b390 or above)
