The API in Accredible Credential.net December 6th, 2023 allows an Insecure Direct Object Reference attack that discloses partial information about certificates and their respective holder. NOTE: the excellium-services.com web page about this issue mentions "Vendor says that it's not a security issue."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-04-16T00:00:00
Updated: 2024-08-02T22:23:43.764Z
Reserved: 2023-12-15T00:00:00
Link: CVE-2023-50872
Vulnrichment
Updated: 2024-08-02T22:23:43.764Z
NVD
Status : Awaiting Analysis
Published: 2024-04-16T16:15:08.150
Modified: 2024-08-02T23:15:36.267
Link: CVE-2023-50872
Redhat
No data.