CVE-2023-39144

HIGH

Element55 KnowMore <21 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-39144. PoCs published by cduram.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2023-39144, a cleartext password storage vulnerability in Element55 Maketime Appliance. The vulnerability allows attackers to view sensitive credentials in HTML source code, potentially leading to privilege escalation.

Description

Element55 KnowMore appliances version 21 and older was discovered to store passwords in plaintext.

Exploits (1)

nomisec WRITEUP
by cduram · poc
https://github.com/cduram/CVE-2023-39144

This repository provides a detailed technical analysis of CVE-2023-39144, a cleartext password storage vulnerability in Element55 Maketime Appliance. The vulnerability allows attackers to view sensitive credentials in HTML source code, potentially leading to privilege escalation.

Classification
Writeup 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Element55 Maketime Appliance versions 21 and older
Auth required
Prerequisites: Access to admin pages of the Maketime Appliance
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory
https://github.com/cduram/CVE-2023-39144

Scores

CVSS v3 7.5
EPSS 0.0044
EPSS Percentile 35.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-312
Status published
Products (1)
element55/knowmore < 22
Published Aug 03, 2023
Tracked Since Feb 18, 2026