Static Encryption Key Vulnerability in Marval MSM through 14.19.0.12476

Static Encryption Key Vulnerability in Marval MSM through 14.19.0.12476

CVE-2023-33283 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Marval MSM through 14.19.0.12476 uses a static encryption key for secrets. An attacker that gains access to encrypted secrets can decrypt them by using this key.

Learn more about our Web Application Penetration Testing UK.