Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-29062

The Operating System hosting the FACSChorus application is configured to allow transmission of hashed user credentials upon user action without adequately validating the identity of the requested resource. This is possible through the use of LLMNR, MBT-NS, or MDNS and will result in NTLMv2 hashes being sent to a malicious entity position on the local network. These hashes can subsequently be attacked through brute force and cracked if a weak password is used. This attack would only apply to domain joined systems.

Published

2023-11-28T21:15:07.440

Last Modified

2024-11-21T07:56:29.017

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 3.8 (LOW)

Weaknesses

Type: Secondary
CWE-287
Type: Primary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	bd	facschorus	5.0	Yes
Application	bd	facschorus	5.1	Yes
Hardware	hp	hp_z2_tower_g9	-	No
Application	bd	facschorus	3.0	Yes
Application	bd	facschorus	3.1	Yes
Hardware	hp	hp_z2_tower_g5	-	No

References

https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-facschorus-software Vendor Advisory ([email protected])
https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-facschorus-software Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)