CVE-2023-6259

Summary

Insufficiently Protected Credentials, : Improper Access Control vulnerability in Brivo ACS100, ACS300 allows Password Recovery Exploitation, Bypassing Physical Security.This issue affects ACS100, ACS300: from 5.2.4 before 6.2.4.3.

Affected Software

VendorProductVersion RangeStatus
BrivoACS100, ACS3005.2.4 < 6.2.4.3affected

Weaknesses

  • CWE-522: CWE-522 Insufficiently Protected Credentials
  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References