High severity7.7NVD Advisory· Published Sep 7, 2023· Updated Jun 17, 2026
CVE-2023-39421
CVE-2023-39421
Description
The RDPWin.dll component as used in the IRM Next Generation booking engine includes a set of hardcoded API keys for third-party services such as Twilio and Vonage. These keys allow unrestricted interaction with these services.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 5.4.1.23
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.