CVE-2023-27927

Description

An authenticated malicious user could acquire the simple mail transfer protocol (SMTP) Password in cleartext format, despite it being protected and hidden behind asterisks. The attacker could then perform further attacks using the SMTP credentials.

Related CPE's

osauter-controlsey-as525f001_firmware-*******

hsauter-controlsey-as525f001-*******

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-082-03

Third Party AdvisoryUS Government Resource

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io