CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-25069

TXOne StellarOne has an improper access control privilege escalation vulnerability in every version before V2.0.1160 that could allow a malicious, falsely authenticated user to escalate his privileges to administrator level. With these privileges, an attacker could perform actions they are not authorized to. Please note: an attacker must first obtain a low-privileged authenticated user's profile on the target system in order to exploit this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.6%

CVSS Severity

CVSS v3 Score 8.8

References

https://success.trendmicro.com/solution/000292486
https://www.zerodayinitiative.com/advisories/ZDI-23-231/
https://success.trendmicro.com/solution/000292486
https://www.zerodayinitiative.com/advisories/ZDI-23-231/

Products affected by CVE-2023-25069

Trendmicro » Txone Stellarone » Version: N/A

cpe:2.3:a:trendmicro:txone_stellarone:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-25069

Products

Pricing

Contact Us