CVE-2023-1656

high

ForgeRock

CVSS v3 Base Score

7.5

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Characteristics

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Confidentiality

High

Integrity

High

Availability

High

Published: March 29, 2023 (1141 days ago)

Last Modified: April 14, 2025

Vendor: ForgeRock

Source: NVD

Description

Cleartext Transmission of Sensitive Information vulnerability in ForgeRock Inc. OpenIDM and Java Remote Connector Server (RCS) LDAP Connector on Windows, MacOS, Linux allows Remote Services with Stolen Credentials.This issue affects OpenIDM and Java Remote Connector Server (RCS): from 1.5.20.9 through 1.5.20.13.

References

🔗 backstage.forgerock.com 🔗 backstage.forgerock.com 🔗 backstage.forgerock.com 🔗 backstage.forgerock.com

CVE-2023-1656

Vulnerability Report

Description

References