e-Excellence U-Office Force - Error Message Leakage
CVE-2023-32755

5.3MEDIUM

Key Information:

Vendor: E-excellence
Status: U-office Force
Vendor: CVE Published:; 25 August 2023

🔔 Create E-excellence Vulnerability Alert

What is CVE-2023-32755?

e-Excellence U-Office Force generates an error message in webiste service. An unauthenticated remote attacker can obtain partial sensitive system information from error message by sending a crafted command.

Affected Version(s)

U-Office Force 20.0.7668D

References

https://www.twcert.org.tw/tw/cp-132-7328-d4112-1.html

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 25, 2023
Vulnerability Reserved
May 15, 2023

CVE-2023-32755 Data

JSON