CVE-2023-6253

Published: Nov 22, 2023

Modified: Feb 13, 2025

PUBLISHED

Description

A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows a local attacker to retrieve the uninstall key and remove the software by extracting the uninstaller key from the memory of the uninstaller file.

Vendor	Product	Versions
Fortra	Digital Guardian Agent	affected `0 - < 7.9.4`

Weaknesses (CWE)

CWE-922

References

https://www.fortra.com/security

https://r.sec-consult.com/fortra

http://seclists.org/fulldisclosure/2023/Nov/14

http://packetstormsecurity.com/files/175956/Fortra-Digital-Guardian-Agent-Uninstaller-Cross-Site-Scripting-UninstallKey-Cached.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-6253

Description

Affected Products

Weaknesses (CWE)

References