CVE-2023-29656
- Reference to the description:
- Description:
- An improper authorization vulnerability in Darktrace mobile app (Android) prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actions(block/unblock traffic) from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress traffic in the entire infrastructure where darktrace agents are deployed.
- Last updated date:
- 07/12/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/12/2023
- Reference url to background