CVE-2023-31824

An issue found in DERICIA Co. Ltd, DELICIA v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp DELICIA function.
Configurations

Configuration 1 (hide)

cpe:2.3:a:dericia:delicia:13.6.1:*:*:*:*:*:*:*

History

21 Nov 2024, 08:02

Type Values Removed Values Added
References () http://delicia.com - Product () http://delicia.com - Product
References () http://dericia.com - Product () http://dericia.com - Product
References () https://github.com/syz913/CVE-reports/blob/main/CVE-2023-31824.md - Exploit, Third Party Advisory () https://github.com/syz913/CVE-reports/blob/main/CVE-2023-31824.md - Exploit, Third Party Advisory

30 Oct 2024, 20:35

Type Values Removed Values Added
CWE CWE-522

25 Jul 2023, 18:55

Type Values Removed Values Added
CWE NVD-CWE-noinfo
References (MISC) http://delicia.com - (MISC) http://delicia.com - Product
References (MISC) https://github.com/syz913/CVE-reports/blob/main/CVE-2023-31824.md - (MISC) https://github.com/syz913/CVE-reports/blob/main/CVE-2023-31824.md - Exploit, Third Party Advisory
References (MISC) http://dericia.com - (MISC) http://dericia.com - Product
First Time Dericia
Dericia delicia
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CPE cpe:2.3:a:dericia:delicia:13.6.1:*:*:*:*:*:*:*

13 Jul 2023, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-07-13 15:15

Updated : 2024-11-21 08:02


NVD link : CVE-2023-31824

Mitre link : CVE-2023-31824

CVE.ORG link : CVE-2023-31824


JSON object : View

Products Affected

dericia

  • delicia
CWE
NVD-CWE-noinfo CWE-522

Insufficiently Protected Credentials