cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-20207,https://securityvulnerability.io/vulnerability/CVE-2023-20207,Information Disclosure in Cisco Duo Authentication Proxy Logging Component,"A vulnerability in the logging component of the Cisco Duo Authentication Proxy may allow authenticated remote attackers to gain unauthorized access to sensitive information. Specifically, due to unencrypted credentials being stored, an attacker with access to the logs can retrieve credentials that should remain private. This exposure of sensitive data in clear text can lead to further attacks and compromise the security of the affected system. Protecting logging mechanisms and ensuring proper credential management are essential steps to mitigate this vulnerability.",Cisco,Cisco Duo Authentication Proxy,6.5,MEDIUM,0.0010000000474974513,false,,false,false,false,,,false,false,,2023-07-12T14:15:00.000Z,0