Vulnerabilities > CVE-2023-33370 - Improper Handling of Exceptional Conditions vulnerability in Assaabloy Control ID Idsecure 4.7.26.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
assaabloy
CWE-755

Summary

An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing attackers to cause the main web server of IDSecure to fault and crash, causing a denial of service.

Vulnerable Configurations

Part Description Count
Application
Assaabloy
1