Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd0a72a055-908d-47f5-a16a-1f09049c16c6NVD:CVE-2023-45083
HistoryDec 05, 2023 - 5:15 p.m.

CVE-2023-45083

2023-12-0517:15:07
CWE-269
0a72a055-908d-47f5-a16a-1f09049c16c6
web.nvd.nist.gov
2
improper privilege management
hypercloud
user authentication

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

9.0%

JSON

An Improper Privilege Management vulnerability exists in HyperCloud that will impact the ability for a user to authenticate against the management plane.

An authenticated admin-level user may be able to delete the “admin” or “serveradmin” users, which prevents authentication from subsequently succeeding.

This issue affects HyperCloud versions 1.0 to any release before 2.1.

Affected configurations

Nvd
Node
softironhypercloudRange1.02.1.0
VendorProductVersionCPE
softironhypercloud*cpe:2.3:a:softiron:hypercloud:*:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
cve 1
prion
prion
Privilege escalation
2023-12-05 17:15:00
cvelist
cvelist
CVE-2023-45083 HyperCloud: "admin" and "serveradmin" users can be deleted
2023-12-05 16:15:07
cve
cve
CVE-2023-45083
2023-12-05 17:15:07

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

9.0%

JSON
Related for NVD:CVE-2023-45083
prion1cvelist1cve1