Precision Bridge PrecisionBridge.exe (aka the thick client) before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address.
References
Link | Resource |
---|---|
https://precisionbridge.net/738vulnerability | Exploit Third Party Advisory |
https://processhacker.sourceforge.io/archive/website_v2/features.php | Not Applicable |
https://precisionbridge.net/738vulnerability | Exploit Third Party Advisory |
https://processhacker.sourceforge.io/archive/website_v2/features.php | Not Applicable |
Configurations
History
21 Nov 2024, 08:33
Type | Values Removed | Values Added |
---|---|---|
References | () https://precisionbridge.net/738vulnerability - Exploit, Third Party Advisory | |
References | () https://processhacker.sourceforge.io/archive/website_v2/features.php - Not Applicable |
30 Nov 2023, 21:30
Type | Values Removed | Values Added |
---|---|---|
References | () https://processhacker.sourceforge.io/archive/website_v2/features.php - Not Applicable | |
References | () https://precisionbridge.net/738vulnerability - Exploit, Third Party Advisory | |
CPE | cpe:2.3:a:precisionbridge:precision_bridge:*:*:*:*:*:*:*:* | |
CWE | CWE-295 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.1 |
27 Nov 2023, 13:52
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-26 22:15
Updated : 2024-11-21 08:33
NVD link : CVE-2023-49312
Mitre link : CVE-2023-49312
CVE.ORG link : CVE-2023-49312
JSON object : View
Products Affected
precisionbridge
- precision_bridge
CWE
CWE-295
Improper Certificate Validation