PT-2023-22594 · 4D Server · 4D Server
Karlo Dautović
·
Published
2023-06-16
·
Updated
2023-12-14
·
CVE-2023-30223
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
4D Server software versions v17 through v19 R7
Description
A broken authentication issue allows attackers to send crafted TCP packets containing requests to perform arbitrary actions.
Recommendations
For versions v17 through v19 R7, update to a version later than v19 R7 to resolve the issue.
At the moment, there is no information about other mitigation measures for this specific issue.
Exploit
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
4D Server