CVE-2023-2665

HIGH Year: 2023
CVSS v3 Score
7.5
High
Weakness Type
CWE-921
View all →

Vulnerability Description

Storage of Sensitive Data in a Mechanism without Access Control in GitHub repository francoisjacquet/rosariosis prior to 11.0.

Related Vulnerabilities

CVE-2023-41965

HIGH
CVSS:7.5(High)

Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the authentication process.

CWE-9212023

CVE-2025-24870

MEDIUM
CVSS:6.0(Medium)

SAP GUI for Windows & RFC service credentials are incorrectly stored in the memory of the program allowing an unauthenticated attacker to access information within systems, resulting in privilege esca...

CWE-9212025

CVE-2025-30016

CRITICAL
CVSS:9.8(Critical)

SAP Financial Consolidation allows an unauthenticated attacker to gain unauthorized access to the Admin account. The vulnerability arises due to improper authentication mechanisms, due to which there ...

CWE-9212025

CVE-2023-41965

HIGH
CVSS:7.5(High)

Sending some requests in the web application of the vulnerable device allows information to be obtained due to the lack of security in the authentication process.

CWE-9212023

CVE-2025-24870

MEDIUM
CVSS:6.0(Medium)

SAP GUI for Windows & RFC service credentials are incorrectly stored in the memory of the program allowing an unauthenticated attacker to access information within systems, resulting in privilege esca...

CWE-9212025

CVE-2025-24843

MEDIUM
CVSS:5.1(Medium)

Insecure file retrieval process that facilitates potential for file manipulation to affect product stability and confidentiality, integrity, authenticity, and attestation of stored data.

CWE-9212025