Insecure Direct Object References (IDOR) in EMSigner v2.8.7 allow attackers to gain unauthorized access to application content and view sensitive data of other users via manipulation of the documentID and EncryptedDocumentId parameters.
References
Link | Resource |
---|---|
https://secpro.llc/emsigner-cve-3/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-11-14T00:00:00
Updated: 2023-11-14T04:44:56.537514
Reserved: 2023-09-25T00:00:00
Link: CVE-2023-43900
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-14T05:15:08.700
Modified: 2023-11-17T19:36:27.767
Link: CVE-2023-43900
JSON object: View
Redhat Information
No data.
CWE