CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-37498

A user is capable of assigning him/herself to arbitrary groups by reusing a POST request issued by an administrator. It is possible that an attacker could potentially escalate their privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.8%

CVSS Severity

CVSS v3 Score 8.1

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0106545
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0106545

Products affected by CVE-2023-37498

Hcltech » Unica » Version: N/A

cpe:2.3:a:hcltech:unica:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-37498

Products

Pricing

Contact Us