CVE-2023-29656 (threat_visualizer)

An improper authorization vulnerability in Darktrace mobile app (Android) prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actions(block/unblock traffic) from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress traffic in the entire infrastructure where darktrace agents are deployed.

actions android app application authorization block blocking control cve darktrace disabled egress infrastructure low mobile mobile app mobile application privilege shutdown traffic version vulnerability