What the vulnerability does
01Description
Symantec Protection Engine, prior to 9.1.0, may be susceptible to a Hash Leak vulnerability.
CVE-2023-23958
MEDIUM
CVE-2023-23958: Symantec Protection Engine Hash Leak Vulnerability
CVSS base score
6.8/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
Key dates
02Disclosure timeline
September 26, 2023
CVE published
September 23, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-1556 Information disclosure via file URI overwrite in File (Field) Paths
CVE-2021-3773
CVE-2024-13611 Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss <= 2.6.9 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory
CVE-2023-42490 EisBaer Scada - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CVE-2023-29106
