CVE-2023-22897

Description from NVD

An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows information disclosure of memory contents to be achieved by an authenticated user. Essentially, uninitialized data can be retrieved via an approach in which a sessionid is obtained but not used.

Information Acquisition Date:2023-04-13T15:04Z
CVSS 2.0: 0.0 None CVSS 3.x: 0.0 None

NVD References

 https://github.com/MrTuxracer/advisories/blob/master/CVEs/CVE-2023-22897.txt
     source:MISC
     tags:
 https://rcesecurity.com
     source:MISC
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...209
https://www.rcesecurity.com/2023/04/securepwn-part-2-leakin...7

▼ Show Information from Twitter(31)

List of frequently cited URLs

URLNum of Times Referred to
alerts.vulmon.com209
www.rcesecurity.com7

▼ Show Information from Twitter(31)

GitHub Search Results: Up to 10
NameURL
No Data
GitHub Search Results: Up to 10
NameURL
No Data
2023/04/19 Score : 1
Added Har-sia Database : 2023/04/11
Last Modified : 2023/04/19
Highest Scored Date : 2023/04/13
Highest Score : 18