{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2023-46595","assignerOrgId":"ca5f073f-8266-4d43-b3e3-6eb0bb18a738","state":"PUBLISHED","assignerShortName":"AlgoSec","dateReserved":"2023-10-23T10:00:57.893Z","datePublished":"2023-11-02T07:47:50.794Z","dateUpdated":"2025-11-12T08:38:33.676Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","platforms":["64 bit","Linux"],"product":"Algosec FireFlow","vendor":"Algosec","versions":[{"status":"affected","version":"A32.20, A32.50"}]}],"credits":[{"lang":"en","type":"finder","user":"00000000-0000-4000-9000-000000000000","value":"Michał Bogdanowicz from Nordea Bank ABP (https://www.linkedin.com/in/micha%C5%82-bogdanowicz-603267a8/)"}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor&nbsp;allows an attacker&nbsp;<span style=\"background-color: rgb(255, 255, 255);\">to obtain victim’s domain credentials and Net-NTLM hash which can lead<span style=\"background-color: rgb(255, 255, 255);\">&nbsp;to relay domain attacks. Fixed in&nbsp;A32.20 (b570 or above),  A32.50 (b390 or above)\n\n</span></span>"}],"value":"Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor allows an attacker to obtain victim’s domain credentials and Net-NTLM hash which can lead to relay domain attacks. Fixed in A32.20 (b570 or above),  A32.50 (b390 or above)"}],"impacts":[{"capecId":"CAPEC-21","descriptions":[{"lang":"en","value":"CAPEC-21 Exploitation of Trusted Credentials"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"HIGH","attackVector":"ADJACENT_NETWORK","availabilityImpact":"LOW","baseScore":5.9,"baseSeverity":"MEDIUM","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"HIGH","scope":"UNCHANGED","userInteraction":"REQUIRED","vectorString":"CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:L","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-79","description":"CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"ca5f073f-8266-4d43-b3e3-6eb0bb18a738","shortName":"AlgoSec","dateUpdated":"2025-11-12T08:38:33.676Z"},"references":[{"url":"https://cwe.mitre.org/data/definitions/79.html"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Upgrade ASMS suite to&nbsp;A32.20 (b570 or above),&nbsp; A32.50 (b390 or above)<br><a target=\"_blank\" rel=\"nofollow\" href=\"https://portal.algosec.com/en/downloads/hotfix_releases\">https://portal.algosec.com/en/downloads/hotfix_releases</a><br>"}],"value":"Upgrade ASMS suite to A32.20 (b570 or above),  A32.50 (b390 or above)\n https://portal.algosec.com/en/downloads/hotfix_releases https://portal.algosec.com/en/downloads/hotfix_releases"}],"source":{"discovery":"EXTERNAL"},"title":"Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor","x_generator":{"engine":"Vulnogram 0.1.0-dev"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T20:45:42.290Z"},"title":"CVE Program Container","references":[{"url":"https://cwe.mitre.org/data/definitions/79.html","tags":["x_transferred"]}]}]}}