CVE-2023-50786
4.1
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
Summary
Dradis through 4.16.0 allows referencing external images (resources) over HTTPS, instead of forcing the use of embedded (uploaded) images. This can be leveraged by an authorized author to attempt to steal the Net-NTLM hashes of other authors on a Windows domain network.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| dradisframework | Dradis | 0 <= 4.16.0 | affected |
Weaknesses
- CWE-294: CWE-294 Authentication Bypass by Capture-replay
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: partial
Additional References
References
- https://dradis.com/
- https://dradis.com/ce
- https://securiteam.io/2025/07/04/cve-2023-50786-dradis-ntlm-theft-vulnerability/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.