Privilege Escalation: Password Retrieval in Microworld Technologies eScan Management Console 14.0.1400.2281

Privilege Escalation: Password Retrieval in Microworld Technologies eScan Management Console 14.0.1400.2281

CVE-2023-33730 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user in plain text format.

Learn more about our User Device Pen Test.