CVE-2023-5913

HIGH

Fortify ScanCentral DAST 21.1-23.1 - Incorrect Privilege Assignment

Title source: llm

Description

Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The vulnerability could be exploited to gain elevated privileges.This issue affects Fortify ScanCentral DAST versions 21.1, 21.2, 21.2.1, 22.1, 22.1.1, 22.2, 23.1.

References (1)

Core 1

Core References

Vendor Advisory

https://portal.microfocus.com/s/article/KM000023500?language=en_US

Scores

CVSS v3 8.2

EPSS 0.0022

EPSS Percentile 44.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-266

Status published

Products (7)

microfocus/fortify_scancentral_dast 21.1

microfocus/fortify_scancentral_dast 21.2

microfocus/fortify_scancentral_dast 21.2.1

microfocus/fortify_scancentral_dast 22.1

microfocus/fortify_scancentral_dast 22.1.1

microfocus/fortify_scancentral_dast 22.2

microfocus/fortify_scancentral_dast 23.1

Published Nov 08, 2023

Tracked Since Feb 18, 2026