An issue was discovered in Sesami Cash Point & Transport... · CVE-2023-31300 · GitHub Advisory Database · GitHub

An issue was discovered in Sesami Cash Point & Transport...

High severity Unreviewed Published Dec 29, 2023 to the GitHub Advisory Database • Updated Apr 17, 2025

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via transmission of unencrypted, cleartext credentials during Password Reset feature.

References

Published by the National Vulnerability Database

Dec 29, 2023

Published to the GitHub Advisory Database Dec 29, 2023

Last updated Apr 17, 2025

Severity

High

/ 10

CVSS v3 base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N