nvd-json-data-feeds/CVE-2023/CVE-2023-383xx/CVE-2023-38324.json

{
  "id": "CVE-2023-38324",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-11-17T06:15:33.760",
  "lastModified": "2023-11-23T03:36:57.720",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It allows users to skip the splash page sequence when it is using the default FAS key and when OpenNDS is configured as FAS (default)."
    },
    {
      "lang": "es",
      "value": "Se descubri\u00f3 un problema en OpenNDS Captive Portal antes de la versi\u00f3n 10.1.2. Permite a los usuarios omitir la secuencia de la p\u00e1gina de presentaci\u00f3n cuando usan la clave FAS predeterminada y cuando OpenNDS est\u00e1 configurado como FAS (predeterminado)."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "availabilityImpact": "NONE",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:opennds:captive_portal:*:*:*:*:*:*:*:*",
              "versionEndExcluding": "10.1.2",
              "matchCriteriaId": "41C7501E-5FCE-4728-A6DC-9DD6C0468496"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.2",
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ]
    }
  ]
}