Vulnerability Details CVE-2023-0882
Improper Input Validation, Authorization Bypass Through User-Controlled Key vulnerability in Kron Tech Single Connect on Windows allows Privilege Abuse. This issue affects Single Connect: 2.16.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 48.7%
CVSS Severity
CVSS v3 Score 8.8
References
- https://docs.krontech.com/singleconnect-2-16/update-patch-rdp-proxy-idor-vulnerability
- https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0092
- https://www.usom.gov.tr/bildirim/tr-23-0092
- https://docs.krontech.com/singleconnect-2-16/update-patch-rdp-proxy-idor-vulnerability
- https://www.usom.gov.tr/bildirim/tr-23-0092
Products affected by CVE-2023-0882
-
cpe:2.3:a:krontech:single_connect:-
-
cpe:2.3:a:krontech:single_connect:2.16
-
cpe:2.3:o:microsoft:windows:-