Security Advisory

CVE-2023-46595

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-02 07:47:50

Last updated 2025-11-12 08:38:33

Assigner AlgoSec

State PUBLISHED

Description

Net-NTLM leak via HTML injection in FireFlow VisualFlow workflow editor allows an attacker to obtain victim’s domain credentials and Net-NTLM hash which can lead to relay domain attacks. Fixed in A32.20 (b570 or above), A32.50 (b390 or above)

← Browse all CVEs View on cve.org ↗