CVE-2023-30367 — HIGH (7.5)

Q: How severe is CVE-2023-30367?

CVE-2023-30367 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-30367?

Check the references section above for vendor advisories and patch information. Affected products include: Mremoteng Mremoteng.

Vulnerability Description

Multi-Remote Next Generation Connection Manager (mRemoteNG) is free software that enables users to store and manage multi-protocol connection configurations to remotely connect to systems. mRemoteNG configuration files can be stored in an encrypted state on disk. mRemoteNG version <= v1.76.20 and <= 1.77.3-dev loads configuration files in plain text into memory (after decrypting them if necessary) at application start-up, even if no connection has been established yet. This allows attackers to access contents of configuration files in plain text through a memory dump and thus compromise user credentials when no custom password encryption key has been set. This also bypasses the connection configuration file encryption setting by dumping already decrypted configurations from memory.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Mremoteng	Mremoteng	<= 1.76.20

Related Weaknesses (CWE)

CWE-312

References

http://packetstormsecurity.com/files/173829/mRemoteNG-1.77.3.1784-NB-Sensitive-IExploitThird Party AdvisoryVDB Entry
https://github.com/S1lkys/CVE-2023-30367-mRemoteNG-password-dumperThird Party Advisory
https://github.com/mRemoteNG/mRemoteNG/issues/2420Issue Tracking
https://www.secuvera.de/advisories/secuvera-SA-2023-01.txtThird Party Advisory
http://packetstormsecurity.com/files/173829/mRemoteNG-1.77.3.1784-NB-Sensitive-IExploitThird Party AdvisoryVDB Entry
https://github.com/S1lkys/CVE-2023-30367-mRemoteNG-password-dumperThird Party Advisory
https://github.com/mRemoteNG/mRemoteNG/issues/2420Issue Tracking
https://www.secuvera.de/advisories/secuvera-SA-2023-01.txtThird Party Advisory

FAQ

What is CVE-2023-30367?

CVE-2023-30367 is a vulnerability with a CVSS score of 7.5 (HIGH). Multi-Remote Next Generation Connection Manager (mRemoteNG) is free software that enables users to store and manage multi-protocol connection configurations to remotely connect to systems. mRemoteNG c...

How severe is CVE-2023-30367?

CVE-2023-30367 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-30367?

Check the references section above for vendor advisories and patch information. Affected products include: Mremoteng Mremoteng.