OpenTextVULNRICHMENT:CVE-2023-6400CVE-2023-6400 Incorrect user authorization vulnerability on OpenText ZENworks Configuration Management (ZCM) product.
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Incorrect Authorization vulnerability in OpenText™ ZENworks Configuration Management (ZCM) allows Unauthorized Use of Device Resources.This issue affects ZENworks Configuration Management (ZCM) versions: 2020 update 3, 23.3, and 23.4.
CNA Affected
[
{
"vendor": "OpenText™",
"product": "ZENworks Configuration Management (ZCM)",
"versions": [
{
"status": "affected",
"version": "2020 update 3"
},
{
"status": "affected",
"version": "23.3"
},
{
"status": "affected",
"version": "23.4"
}
],
"defaultStatus": "unaffected"
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:a:microfocus:zenworks_configuration_management:*:*:*:*:*:*:*:*"
],
"vendor": "microfocus",
"product": "zenworks_configuration_management",
"versions": [
{
"status": "affected",
"version": "2020_update3"
},
{
"status": "affected",
"version": "23.3"
},
{
"status": "affected",
"version": "23.4"
}
],
"defaultStatus": "unknown"
}
]
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total