vantage6_server is vulnerable to Improper Access Control. A remote attacker is able to bypass permissions and access unauthorized modules because assigning existing users to a different organizations is not restricted.
CPE | Name | Operator | Version |
---|---|---|---|
vantage6-server | le | 3.7.3 | |
vantage6-server | le | 3.7.3 |