CVE-2023-5913
8.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Summary
Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The vulnerability could be exploited to gain elevated privileges.This issue affects Fortify ScanCentral DAST versions 21.1, 21.2, 21.2.1, 22.1, 22.1.1, 22.2, 23.1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| opentext | Fortify ScanCentral DAST | 21.1 | affected |
| opentext | Fortify ScanCentral DAST | 21.2 | affected |
| opentext | Fortify ScanCentral DAST | 21.2.1 | affected |
| opentext | Fortify ScanCentral DAST | 22.1 | affected |
| opentext | Fortify ScanCentral DAST | 22.1.1 | affected |
| opentext | Fortify ScanCentral DAST | 22.2 | affected |
| opentext | Fortify ScanCentral DAST | 23.1 | affected |
Weaknesses
- CWE-266: CWE-266 Incorrect Privilege Assignment
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.