cbcvebase.
CVE-2023-37572
published 2023-12-05

CVE-2023-37572: Softing OPC Suite version 5.25 and before has Incorrect Access Control, allows attackers to obtain sensitive information via weak permissions in OSF_discovery…

PriorityP338high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
0.59%
43.9th percentile
Softing OPC Suite version 5.25 and before has Incorrect Access Control, allows attackers to obtain sensitive information via weak permissions in OSF_discovery service. The service executable could be changed or the service could be deleted.

Affected

1 ranges
VendorProductVersion rangeFixed in
softingopc< 5.305.30
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.