CVE-2026-23751 in Kofax Capture情報

要約

〜によって MITRE • 2026年04月23日

Kofax Capture, now referred to as Tungsten Capture, version 6.0.0.0 (other versions may be affected) exposes a deprecated .NET Remoting HTTP channel on port 2424 via the Ascent Capture Service that is accessible without authentication and uses a default, publicly known endpoint identifier. An unauthenticated remote attacker can exploit .NET Remoting object unmarshalling techniques to instantiate a remote System.Net.WebClient object and read arbitrary files from the server filesystem, write attacker-controlled files to the server, or coerce NTLMv2 authentication to an attacker-controlled host, enabling sensitive credential disclosure, denial of service, remote code execution, or lateral movement depending on service account privileges and network environment.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

VulnCheck

予約する

2026年01月15日

公開

2026年04月23日

モデレーション

承諾済み

エントリ

VDB-359148

CPE

準備完了

CWE

CWE-306 (確認済み)

CVSS

9.8 (CNA)

EPSS

0.00275

KEV

いいえ

アクティビティ

非常低い

セクター

Government, Transportation, ...

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-23751
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-23751
CVE Details	https://www.cvedetails.com/cve/CVE-2026-23751/

◂ 前概要次 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!