CVE-2023-29656

Name of the Vulnerable Software and Affected Versions Darktrace mobile app (Android) versions prior to 6.0.15

Description The issue allows disabled and low-privilege users to control antigena actions, such as blocking or unblocking traffic, from the mobile application. This could potentially lead to a shutdown, blocking all ingress or egress traffic in the entire infrastructure where Darktrace agents are deployed.

Recommendations For versions prior to 6.0.15, update to version 6.0.15 or later to resolve the issue. As a temporary workaround, consider restricting access to the antigena actions in the mobile application to prevent unauthorized control of traffic blocking or unblocking.