Lucene search

PRIOn knowledge basePRION:CVE-2023-38752

HistoryAug 09, 2023 - 4:15 a.m.

Authorization

2023-08-0904:15:00

PRIOn knowledge base

www.prio-n.com

authorization

vulnerability

special interest group

network

non-disclosure

system settings

4.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON

Improper authorization vulnerability in Special Interest Group Network for Analysis and Liaison versions 4.4.0 to 4.7.7 allows the authorized API users to view the attribute information of the poster that is set as"non-disclosure" in the system settings.

CPENameOperatorVersion
special_interest_group_network_for_analysis_and_liaisonge4.4.0
special_interest_group_network_for_analysis_and_liaisonle4.7.7

CPE	Name	Operator	Version
	special_interest_group_network_for_analysis_and_liaison	ge	4.4.0
	special_interest_group_network_for_analysis_and_liaison	le	4.7.7

References

jvn.jp/en/jp/JVN83334799/

www.jpcert.or.jp/press/2023/PR20230807_notice.html