Unrated severityNVD Advisory· Published Jul 3, 2023· Updated Oct 24, 2024
CVE-2023-3395
CVE-2023-3395
Description
All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in memory. An attacker with access to system files could open a file to load the document into memory, including sensitive information associated with document, such as password. The attacker could then obtain the plaintext password by using a memory viewer.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.cisa.gov/news-events/ics-advisories/icsa-23-180-03mitregovernment-resource
News mentions
0No linked articles in our index yet.