CVE-2023-49229
Peplink Balance Two before 8.4.0 is affected. The issue is a missing authorization check in the administration web service, allowing read-only, unprivileged users to access sensitive device configuration information. Root cause: absent access control in the admin web service. Impact is informatio...