High severity7.5NVD Advisory· Published Jan 15, 2023· Updated Jun 17, 2026
CVE-2023-23595
CVE-2023-23595
Description
BlueCat Device Registration Portal 2.2 allows XXE attacks that exfiltrate single-line files. A single-line file might contain credentials, such as "machine example.com login daniel password qwerty" in the documentation example for the .netrc file format. NOTE: 2.x versions are no longer supported. There is no available information about whether any later version is affected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- BlueCat/Device Registration Portaldescription
- Range: <=2.2
Patches
Vulnerability mechanics
References
2- bluecatnetworks.com/integrations/adaptive-application/device-registration-portal-drp/nvdProductVendor Advisory
- everything.curl.dev/usingcurl/netrcnvdTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.