Privilege Escalation: Password Retrieval in Microworld Technologies eScan Management Console 14.0.1400.2281
CVE-2023-33730 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user in plain text format.
Learn more about our User Device Pen Test.