3 matches found
CVE-2023-31292
An issue was discovered in Sesami Cash Point & Transport Optimizer CPTO 6.3.8.6 718, allows local attackers to obtain sensitive information and bypass authentication via "Back Button Refresh" attack...
CVE-2023-31293
An issue was discovered in Sesami Cash Point & Transport Optimizer CPTO 6.3.8.6 718, allows remote attackers to obtain sensitive information and bypass profile restriction via improper access control in the Reader system user's web browser, allowing the journal to be displayed, despite the option...
CVE-2023-31293
CVE-2023-31293 concerns Sesami CPTO 6.3.8.6. Multiple sources describe an improper access control in the Reader system user’s web browser that lets remote attackers obtain sensitive information and bypass profile restrictions, enabling the journal to be displayed even when the option is disabled....