Reverse Engineering Vulnerability in Symmetric Encryption of AppsAnywhere Server

Reverse Engineering Vulnerability in Symmetric Encryption of AppsAnywhere Server

CVE-2023-41137 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Symmetric encryption used to protect messages between the AppsAnywhere server and client can be broken by reverse engineering the client and used to impersonate the AppsAnywhere server.

Learn more about our Cis Benchmark Audit For Server Software.