CVE-2023-50442

Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. (This modification can, however, be detected, as described in the Administrator Guide.)
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
VendorProductVersion
primxzonecentral
𝑥
≤ 2023.5
𝑥
= Vulnerable software versions
References
https://www.primx.eu/en/bulletins/security-bulletin-23B30933/
https://www.primx.eu/fr/blog/
https://www.primx.eu/en/bulletins/security-bulletin-23B30933/
https://www.primx.eu/fr/blog/