CVE-2021-44795

Name of the Vulnerable Software and Affected Versions Single Connect (affected versions not specified)

Description The issue arises from the lack of an authorization check in Single Connect when utilizing the sc-assigned-credential-ui module. This allows a remote attacker to potentially modify user permissions without authentication, including the possibility of deleting permissions from other users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.