CVE-2023-50786 | THREATINT

Description

Dradis through 4.16.0 allows referencing external images (resources) over HTTPS, instead of forcing the use of embedded (uploaded) images. This can be leveraged by an authorized author to attempt to steal the Net-NTLM hashes of other authors on a Windows domain network.

PUBLISHED Reserved 2023-12-14 | Published 2025-07-05 | Updated 2025-07-07 | Assigner mitre

MEDIUM: 4.1CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

Problem types

CWE-294 Authentication Bypass by Capture-replay

Product status

Default status

unknown

Any version

affected

References

securiteam.io/...2023-50786-dradis-ntlm-theft-vulnerability/ exploit

dradis.com/

dradis.com/ce

securiteam.io/...2023-50786-dradis-ntlm-theft-vulnerability/

cve.org (CVE-2023-50786)

nvd.nist.gov (CVE-2023-50786)

Download JSON