An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) 6.3.8.6 (#718), allows remote attackers to obtain sensitive information and bypass profile restriction via improper access control in the Reader system user's web browser, allowing the journal to be displayed, despite the option being disabled.
References
Link | Resource |
---|---|
https://herolab.usd.de/en/security-advisories/usd-2022-0061/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-29T00:00:00
Updated: 2023-12-29T02:22:37.876394
Reserved: 2023-04-27T00:00:00
Link: CVE-2023-31293
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-29T03:15:10.690
Modified: 2024-01-08T12:56:43.097
Link: CVE-2023-31293
JSON object: View
Redhat Information
No data.
CWE