7 matches found
EUVD-2023-54827
Malicious code in bioql PyPI...
CVE-2023-4997
Improper authorisation of regular users in ProIntegra Uptime DC software versions below 2.0.0.33940 allows them to change passwords of all other users including administrators leading to a privilege escalation...
CVE-2023-4997
Improper authorisation of regular users in ProIntegra Uptime DC software versions below 2.0.0.33940 allows them to change passwords of all other users including administrators leading to a privilege escalation...
Privilege escalation
Improper authorisation of regular users in ProIntegra Uptime DC software versions below 2.0.0.33940 allows them to change passwords of all other users including administrators leading to a privilege escalation...
CVE-2023-4997
CVE-2023-4997 affects ProIntegra Uptime DC software prior to version 2.0.0.33940. The issue is improper authorization that allows regular users to change passwords of all accounts, including administrators, enabling privilege escalation. The CVE is documented with CVSS v3.1 signals: AV:N/AC:L/PR:...
CVE-2023-4997 Improper authorisation in Uptime DC
Improper authorisation of regular users in ProIntegra Uptime DC software versions below 2.0.0.33940 allows them to change passwords of all other users including administrators leading to a privilege escalation...
ProIntegra Uptime DC Security Vulnerability
ProIntegra Uptime DC is a dashboard from ProIntegra. A security vulnerability exists in versions prior to ProIntegra Uptime DC 2.0.0.33940, which stems from a misconfiguration of permissions, resulting in elevated privileges being available to normal users...