CVE-2023-2703
HIGHFinex Media Competition Management System < 23.07 - Exposure of Private Personal Information
Title source: llmDescription
Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Finex Media Competition Management System allows Retrieve Embedded Sensitive Data, Collect Data as Provided by Users. This issue affects Competition Management System: before 23.07.
References (2)
Core 2
Core References
Third Party Advisory government-resource
broken-link
https://www.usom.gov.tr/bildirim/tr-23-0283
Government Resource government-resource
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0283
Scores
CVSS v3
7.5
EPSS
0.0056
EPSS Percentile
42.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-359
CWE-668
Status
published
Products (2)
Finex Media/Competition Management System
< 23.07
finexmedia/competition_management_system
< 23.07
Published
May 23, 2023
Tracked Since
Feb 18, 2026