Hardcoded Credentials Expose Application to Security Risk
CVE-2023-41919

9.8CRITICAL

Key Information:

Vendor: Kiloview
Status: P1/p2
Vendor: CVE Published:; 2 July 2024

What is CVE-2023-41919?

A security flaw exists due to hardcoded credentials embedded in the source code of specific applications, allowing potential unauthorized access to sensitive systems or data. This vulnerability poses a severe risk as it can easily be exploited by malicious actors to gain unrestricted access to application functionalities without proper authentication. Organizations using affected products must evaluate their application security measures and take immediate actions to remediate this issue to safeguard their data.

Affected Version(s)

P1/P2 All <= 4.8.2605

References

https://advisories.ncsc.nl/advisory?id=NCSC-2024-0273

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 2, 2024
Vulnerability Reserved
Sep 5, 2023

Kiloview

What is CVE-2023-41919?

Affected Version(s)

References

CVSS V3.1

Timeline