CVE-2023-42666 MEDIUM

CVE-2023-42666: Exposure of Sensitive Information to an Unauthorized Actor in DEXMA DEXGate

Vendor Dexma
Product DexGate
Weakness CWE-200 · Info exposure
Published October 19, 2023
Last update September 12, 2024

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

The affected product is vulnerable to an exposure of sensitive information to an unauthorized actor vulnerability, which may allow an attacker to create malicious requests for obtaining the information of the version about the web server used.

Key dates

02Disclosure timeline

October 19, 2023 CVE published
September 12, 2024 Record updated