Unauthenticated Low-Privilege User Access in Ericsson Network Manager

Unauthenticated Low-Privilege User Access in Ericsson Network Manager

CVE-2023-39909 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Ericsson Network Manager before 23.2 mishandles Access Control and thus unauthenticated low-privilege users can access the NCM application.

Learn more about our Network Penetration Testing.