Improper authorisation of regular users in ProIntegra Uptime DC software (versions below 2.0.0.33940) allows them to change passwords of all other users including administrators leading to a privilege escalation.
Metrics
Affected Vendors & Products
References
History
Thu, 19 Sep 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: CERT-PL
Published: 2023-10-04T10:54:27.047Z
Updated: 2024-09-19T19:22:50.955Z
Reserved: 2023-09-15T12:45:58.751Z
Link: CVE-2023-4997
Vulnrichment
Updated: 2024-08-02T07:44:53.695Z
NVD
Status : Analyzed
Published: 2023-10-04T11:15:10.563
Modified: 2023-10-05T17:04:09.880
Link: CVE-2023-4997
Redhat
No data.