1. Home
  2. CVE Database
  3. CVE-2023-4177
LOW · 2.6

CVE-2023-4177

A vulnerability was found in EmpowerID up to 7.205.0.0. It has been rated as problematic. This issue affects some unknown processing of the component Multi-Factor Authentication Code Handler. The mani...

Vulnerability Description

A vulnerability was found in EmpowerID up to 7.205.0.0. It has been rated as problematic. This issue affects some unknown processing of the component Multi-Factor Authentication Code Handler. The manipulation leads to information disclosure. The complexity of an attack is rather high. The exploitation is known to be difficult. Upgrading to version 7.205.0.1 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-236213 was assigned to this vulnerability.

CVSS Score

2.6

LOW

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
EmpoweridEmpowerid<= 7.205.0.0

Related Weaknesses (CWE)

CWE-200CWE-345

References

FAQ

What is CVE-2023-4177?

CVE-2023-4177 is a vulnerability with a CVSS score of 2.6 (LOW). A vulnerability was found in EmpowerID up to 7.205.0.0. It has been rated as problematic. This issue affects some unknown processing of the component Multi-Factor Authentication Code Handler. The mani...

How severe is CVE-2023-4177?

CVE-2023-4177 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-4177?

Check the references section above for vendor advisories and patch information. Affected products include: Empowerid Empowerid.