CVE-2023-2335

Name of the Vulnerable Software and Affected Versions 42gears surelock windows versions 2.3.12 through 2.40.0

Description The issue allows retrieval of admin user credentials due to plaintext passwords being stored in the registry. This is related to the surelockwinsetupv2.40.0.Exe on Windows, specifically affecting registry modules.

Recommendations For versions 2.3.12 through 2.40.0, consider restricting access to the registry modules to minimize the risk of exploitation. As a temporary workaround, avoid using the affected surelockwinsetupv2.40.0.Exe until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.