Vulnerabilities > CVE-2023-37287 - Unspecified vulnerability in Smartsoft Smartbpm.Net 6.70
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
SmartBPM.NET has a vulnerability of using hard-coded authentication key. An unauthenticated remote attacker can exploit this vulnerability to access system with regular user privilege to read application data, and execute submission and approval processes.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |