TXOne StellarOne has an improper access control privilege escalation vulnerability in every version before V2.0.1160 that could allow a malicious, falsely authenticated user to escalate his privileges to administrator level. With these privileges, an attacker could perform actions they are not authorized to.
Please note: an attacker must first obtain a low-privileged authenticated user's profile on the target system in order to exploit this vulnerability.
References
Link | Resource |
---|---|
https://success.trendmicro.com/solution/000292486 | Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-23-231/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trendmicro
Published: 2023-03-17T20:30:25.571Z
Updated: 2023-03-22T04:39:15.803375Z
Reserved: 2023-02-02T19:13:34.266Z
Link: CVE-2023-25069
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-22T06:15:09.753
Modified: 2023-11-07T04:08:49.640
Link: CVE-2023-25069
JSON object: View
Redhat Information
No data.
CWE