VYPR
High severity7.7NVD Advisory· Published Sep 7, 2023· Updated Jun 17, 2026

CVE-2023-39421

CVE-2023-39421

Description

The RDPWin.dll component as used in the IRM Next Generation booking engine includes a set of hardcoded API keys for third-party services such as Twilio and Vonage. These keys allow unrestricted interaction with these services.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.