Missing authentication in the SearchStudentsRFID method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction sensitive student data by unauthenticated attackers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: TML
Published: 2023-10-25T09:38:17.809Z
Updated: 2024-08-02T11:53:54.602Z
Reserved: 2023-02-26T06:25:18.748Z
Link: CVE-2023-26576
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-10-25T18:17:25.720
Modified: 2023-10-28T03:22:20.050
Link: CVE-2023-26576
Redhat
No data.