N1K9

**Name of the Vulnerable Software and Affected Versions** Zope AccessControl versions prior to 7.2 **Description** The issue allows anonymous users to delete the user data maintained by an `AccessControl.userfolder.UserFolder`, which may prevent any privileged access. **Recommendations** For versions prior to 7.2, upgrade to version 7.2 to resolve the issue. As a temporary workaround for users unable to upgrade, add `data roles = ()` to `AccessControl.userfolder.UserFolder`.