An issue was discovered by IPVM team in Network Optix NxCloud before 23.1.0.40440. It was possible to add a fake VMS server to NxCloud by using the exact identification of a legitimate VMS server. As result, it was possible to retrieve authorization headers from legitimate users when the legitimate client connects to the fake VMS server.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: NX

Published: 2023-11-22T17:56:56.711Z

Updated: 2024-08-02T08:28:20.362Z

Reserved: 2023-11-22T17:55:39.783Z

Link: CVE-2023-6263

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-11-22T18:15:09.780

Modified: 2024-11-21T08:43:29.180

Link: CVE-2023-6263

cve-icon Redhat

No data.