3 matches found
CVE-2023-26097
Telindus Apsal is affected: version 3.14.2022.235 b may allow unauthorized actions that could modify the application behavior and may not be blocked. Connected sources confirm the affected software and the general impact (unauthorized actions impacting behavior) but do not provide a technical roo...
CVE-2023-26099
Telindus Apsal version 3.14.2022.235 b has an issue where the consultation permission is insecure. Connected sources provide no public technical details on root cause beyond this permission issue, nor a confirmed fix. PT-2023-20486 (Telindus Apsal) notes there is no information about a newer vers...
CVE-2023-26098
The CVE-2023-26098 issue affects Telindus Apsal, Open Document feature, version 3.14.2022.235 b. A crafted file upload can lead to arbitrary code execution. Exploitation context is not detailed beyond the upload vector; local attack vector with low privileges is implied by CVSS. Remediation guida...