Unknown · Coign Crm Portal · CVE-2023-43317
**Name of the Vulnerable Software and Affected Versions**
Coign CRM Portal version 06.06
**Description**
An issue in the software allows a remote attacker to escalate privileges via the `userPermissionsList` parameter in the Session Storage component.
**Recommendations**
For Coign CRM Portal version 06.06, consider restricting access to the Session Storage component to minimize the risk of exploitation. Avoid using the `userPermissionsList` parameter until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.