Vulnerabilities > CVE-2023-3897 - Information Exposure Through Discrepancy vulnerability in 42Gears Suremdm 6.31
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
Username enumeration is possible through Bypassing CAPTCHA in On-premise SureMDM Solution on Windows deployment allows attacker to enumerate local user information via error message. This issue affects SureMDM On-premise: 6.31 and below version
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |