CVE-2022-46783: Weak Encryption
First published: Mon Aug 28 2023(Updated: )
An issue was discovered in Stormshield SSL VPN Client before 3.2.0. If multiple address books are used, an attacker may be able to access the other encrypted address book.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Stormshield SSL VPN Client | <3.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-46783?
CVE-2022-46783 is an issue in Stormshield SSL VPN Client before version 3.2.0 that allows an attacker to access encrypted address books if multiple address books are used.
What is the severity of CVE-2022-46783?
The severity of CVE-2022-46783 is medium with a CVSS score of 5.3.
How can an attacker exploit CVE-2022-46783?
An attacker can exploit CVE-2022-46783 by taking advantage of the vulnerability in the Stormshield SSL VPN Client to access encrypted address books when multiple address books are used.
How can I fix CVE-2022-46783?
To fix CVE-2022-46783, users should update Stormshield SSL VPN Client to version 3.2.0 or later.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-api
- collector/nvd-index
- vendor/stormshield
- canonical/stormshield ssl vpn client