Credential Leak Vulnerability in CP Plus KVMS Pro
CVE-2023-1518

7.8HIGH

Key Information:

Vendor: Cp Plus
Status: Kvms Pro
Vendor: CVE Published:; 28 March 2023

What is CVE-2023-1518?

CP Plus KVMS Pro versions up to 2.01.0.T.190521 have a serious issue where sensitive credentials are insufficiently protected, leading to potential leakage of confidential information. This vulnerability places users at risk and necessitates prompt action for resolution.

Affected Version(s)

KVMS Pro 0 <= 2.01.0.T.190521

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-0...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 28, 2023
Vulnerability Reserved
Mar 20, 2023

Credit

Harshit Shukla reported this vulnerability to CISA.

CVE-2023-1518 Data

JSON

Cp Plus

What is CVE-2023-1518?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit