JVN#00460236: NetCommons vulnerable to privilege escalation

2016-05-26T00:00:00
ID JVN:00460236
Type jvn
Reporter Japan Vulnerability Notes
Modified 2016-05-26T00:00:00

Description

## Description

NetCommons provided by the NetCommons Project contains a privilege escalation vulnerability.

## Impact

A user with secretariat privileges ("CLERK") may create a user with (system) administrator privileges ("SYSTEM_ADMIN").

## Solution

Update the Software
Update the software according to the information provided by the developer.

## Products Affected

  • NetCommons2.4.2.1 and earlier versions