PT-2023-25123 · Infodrom · Infodrom Software E-Invoice Approval System

Gokhan Uygan

Publicado

2023-07-25

Atualizado

2026-05-22

CVE-2023-35067

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Infodrom Software E-Invoice Approval System versions prior to 20230701

Description The issue affects the Infodrom Software E-Invoice Approval System, where a Plaintext Storage of a Password vulnerability allows reading sensitive strings within an executable.

Recommendations For versions prior to 20230701, update to version 20230701 or later to resolve the issue.

Correção

Insufficiently Protected Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-522CWE-256

Identificadores relacionados

CVE-2023-35067

Produtos afetados

Infodrom Software E-Invoice Approval System

PT-2023-25123 · Infodrom · Infodrom Software E-Invoice Approval System

CVE-2023-35067

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8