Vulnerabilities > CVE-2023-50439 - Unspecified vulnerability in Primx Zed!, Zedmail and Zonecentral

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

primx

NVD

Published: 2023-12-13

Updated: 2023-12-20

Summary

ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 (ANSSI qualification submission), ZED! for Windows before Q.2021.2 (ANSSI qualification submission), ZONECENTRAL for Windows before Q.2021.2 (ANSSI qualification submission), ZONECENTRAL for Windows before 2023.5, or ZEDMAIL for Windows before 2023.5 disclose the original path in which the containers were created, which allows an unauthenticated attacker to obtain some information regarding the context of use (project name, etc.).

Vulnerable Configurations

Part	Description	Count
Application	Primx Primx Zonecentral * Primx Zonecentral 6.1.2240 Primx Zedmail 6.1.2240 Primx Zed! 2023.5 Primx Zed! Q.2020.1 Primx Zed! Q.2020.2 Primx Zed! * Primx Zed! Q.2021.1	8

Summary

Vulnerable Configurations

References