Incorrect Access Control in Stormshield Endpoint Security 2.3.0 through 2.3.2 allows authenticated users to update global parameters

Incorrect Access Control in Stormshield Endpoint Security 2.3.0 through 2.3.2 allows authenticated users to update global parameters

CVE-2023-23562 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Stormshield Endpoint Security 2.3.0 through 2.3.2 has Incorrect Access Control that allows an authenticated user can update global parameters.

Learn more about our User Device Pen Test.