Vulnerabilities > CVE-2023-4095 - Information Exposure Through Discrepancy vulnerability in Fujitsu Arconte Aurea 1.5.0.0

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

fujitsu

CWE-203

NVD

Published: 2023-09-19

Updated: 2023-09-21

Summary

User enumeration vulnerability in Arconte Áurea 1.5.0.0 version. The exploitation of this vulnerability could allow an attacker to obtain a list of registered users in the application, obtaining the necessary information to perform more complex attacks on the platform.

Vulnerable Configurations

Part	Description	Count
Application	Fujitsu Fujitsu Arconte Aurea 1.5.0.0	1

Common Weakness Enumeration (CWE)

CWE-203 - Information Exposure Through Discrepancy

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-fujitsu-arconte-aurea