Lucene search

K
vulnrichmentMitreVULNRICHMENT:CVE-2023-39740
HistoryOct 24, 2023 - 12:00 a.m.

CVE-2023-39740

2023-10-2400:00:00
mitre
github.com
onigiriya-musubee
client secret leakage
channel access token
crafted broadcast messages
cve-2023-39740

AI Score

8.1

Confidence

High

EPSS

0.001

Percentile

41.1%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.

AI Score

8.1

Confidence

High

EPSS

0.001

Percentile

41.1%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

Related for VULNRICHMENT:CVE-2023-39740