The QSige login SSO does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-10-03T11:26:49.190Z
Updated: 2024-08-02T07:17:11.929Z
Reserved: 2023-08-02T11:53:05.863Z
Link: CVE-2023-4101
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-10-03T12:15:10.973
Modified: 2023-10-10T14:26:51.557
Link: CVE-2023-4101
Redhat
No data.