4 matches found
CVE-2023-46595
Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor allows an attacker to obtain victim’s domain credentials and Net-NTLM hash which can lead to relay domain attacks. Fixed in A32.20 b570 or above, A32.50 b390 or above...
CVE-2023-46595
creationtimestamp| type| source ---|---|--- 2023-11-02 11:22:24+00:00| seen| https://t.me/cibsecurity/73417...
CVE-2023-46595 Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor
Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor allows an attacker to obtain victim’s domain credentials and Net-NTLM hash which can lead to relay domain attacks. Fixed in A32.20 b570 or above, A32.50 b390 or above...
CVE-2023-46595
The CVE-2023-46595 entry is supported by concrete technical details in connected sources describing an HTML injection vulnerability in AlgoSec FireFlow VisualFlow editor. Affected software: FireFlow VisualFlow prior to A32.20 (b570) and prior to A32.50 (b390) (as well as prior to A32.60 (b220) pe...