How severe is CVE-2023-3747?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.5 out of 10.

What type of vulnerability is CVE-2023-3747?

This is classified as CWE-602, which is a common weakness in software security.

CVE-2023-3747 - MEDIUM Severity | CVSS 5.5

Vulnerability Description

Zero Trust Administrators have the ability to disallow end users from disabling WARP on their devices. Override codes can also be created by the Administrators to allow a device to temporarily be disconnected from WARP, however, due to lack of server side validation, an attacker with local access to the device, could extend the maximum allowed disconnected time of WARP client granted by an override code by changing the date & time on the local device where WARP is running.

Related Vulnerabilities

CVE-2017-14013

MEDIUM

CVSS:5.6(Medium)

A Client-Side Enforcement of Server-Side Security issue was discovered in ProMinent MultiFLEX M10a Controller web interface. The log out function in the application removes the user's session only on ...

CWE-6022017

CVE-2020-5345

MEDIUM

CVSS:5.4(Medium)

Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an authorization bypass v...

CWE-6022020

CVE-2023-30955

MEDIUM

CVSS:5.4(Medium)

A security defect was identified in Foundry workspace-server that enabled a user to bypass an authorization check and view settings related to 'Developer Mode'. This enabled users with insufficient pr...

CWE-6022023

CVE-2024-32512

MEDIUM

CVSS:5.3(Medium)

Client-Side Enforcement of Server-Side Security vulnerability in weForms allows Removing Important Client Functionality.This issue affects weForms: from n/a through 1.6.20.

CWE-6022024

CVE-2024-32521

MEDIUM

CVSS:5.3(Medium)

Client-Side Enforcement of Server-Side Security vulnerability in Highfivery LLC Zero Spam allows Removing Important Client Functionality.This issue affects Zero Spam: from n/a through 5.5.6.

CWE-6022024

CVE-2024-32685

MEDIUM

CVSS:5.3(Medium)

Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.2.5.

CWE-6022024