The Operating System hosting the FACSChorus application is configured to allow transmission of hashed user credentials upon user action without adequately validating the identity of the requested resource. This is possible through the use of LLMNR, MBT-NS, or MDNS and will result in NTLMv2 hashes being sent to a malicious entity position on the local network. These hashes can subsequently be attacked through brute force and cracked if a weak password is used. This attack would only apply to domain joined systems.
References
Link | Resource |
---|---|
https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-facschorus-software | Vendor Advisory |
https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-facschorus-software | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
History
21 Nov 2024, 07:56
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-facschorus-software - Vendor Advisory |
05 Dec 2023, 14:44
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:bd:facschorus:5.1:*:*:*:*:*:*:* cpe:2.3:o:bd:facschorus:5.0:*:*:*:*:*:*:* cpe:2.3:o:bd:facschorus:3.1:*:*:*:*:*:*:* |
cpe:2.3:a:bd:facschorus:5.1:*:*:*:*:*:*:* cpe:2.3:a:bd:facschorus:5.0:*:*:*:*:*:*:* cpe:2.3:a:bd:facschorus:3.0:*:*:*:*:*:*:* cpe:2.3:a:bd:facschorus:3.1:*:*:*:*:*:*:* |
04 Dec 2023, 19:55
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-287 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 3.8 |
CPE | cpe:2.3:o:bd:facschorus:3.0:*:*:*:*:*:*:* cpe:2.3:o:bd:facschorus:3.1:*:*:*:*:*:*:* cpe:2.3:h:hp:hp_z2_tower_g9:-:*:*:*:*:*:*:* cpe:2.3:o:bd:facschorus:5.1:*:*:*:*:*:*:* cpe:2.3:o:bd:facschorus:5.0:*:*:*:*:*:*:* cpe:2.3:h:hp:hp_z2_tower_g5:-:*:*:*:*:*:*:* |
|
References | () https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-facschorus-software - Vendor Advisory |
28 Nov 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-28 21:15
Updated : 2024-11-21 07:56
NVD link : CVE-2023-29062
Mitre link : CVE-2023-29062
CVE.ORG link : CVE-2023-29062
JSON object : View
Products Affected
bd
- facschorus
hp
- hp_z2_tower_g9
- hp_z2_tower_g5
CWE
CWE-287
Improper Authentication