Privilege Escalation Vulnerability in Command Centre Server Allows Unauthorized Access to Personal Data Fields

Privilege Escalation Vulnerability in Command Centre Server Allows Unauthorized Access to Personal Data Fields

CVE-2023-23568 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Personal Data Fields. This issue affects Command Centre: vEL 8.90 prior to vEL8.90.1318 (MR1), vEL8.80 prior to vEL8.80.1192 (MR2), vEL8.70 prior to vEL8.70.2185 (MR4), vEL8.60 prior to vEL8.60.2347 (MR6), vEL8.50 prior to vEL8.50.2831 (MR8), all versions vEL8.40 and prior

Learn more about our Cis Benchmark Audit For Server Software.