Vulnerabilities > CVE-2023-46501 - Unspecified vulnerability in Boltwire 6.03

CVSS 9.1 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

boltwire

critical

NVD

Published: 2023-11-07

Updated: 2024-11-21

Summary

An issue in BoltWire v.6.03 allows a remote attacker to obtain sensitive information via a crafted payload to the view and change admin password function.

Vulnerable Configurations

Part	Description	Count
Application	Boltwire Boltwire Boltwire 6.03	1

References

https://github.com/Cyber-Wo0dy/CVE-2023-46501
https://github.com/Cyber-Wo0dy/CVE-2023-46501
https://github.com/Cyber-Wo0dy/report/blob/main/boltwire/v6.03/boltwire_improper_access_control
https://github.com/Cyber-Wo0dy/report/blob/main/boltwire/v6.03/boltwire_improper_access_control