Vulnerability Description
Precision Bridge PrecisionBridge.exe (aka the thick client) before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Precisionbridge | Precision Bridge | < 7.3.21 |
Related Weaknesses (CWE)
References
- https://precisionbridge.net/738vulnerabilityExploitThird Party Advisory
- https://processhacker.sourceforge.io/archive/website_v2/features.phpNot Applicable
- https://precisionbridge.net/738vulnerabilityExploitThird Party Advisory
- https://processhacker.sourceforge.io/archive/website_v2/features.phpNot Applicable
FAQ
What is CVE-2023-49312?
CVE-2023-49312 is a vulnerability with a CVSS score of 9.1 (CRITICAL). Precision Bridge PrecisionBridge.exe (aka the thick client) before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacke...
How severe is CVE-2023-49312?
CVE-2023-49312 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-49312?
Check the references section above for vendor advisories and patch information. Affected products include: Precisionbridge Precision Bridge.