CVE-2023-25069

Name of the Vulnerable Software and Affected Versions TXOne StellarOne versions prior to V2.0.1160

Description The issue is related to improper access control, which could allow a malicious user to escalate their privileges to administrator level. This would enable the attacker to perform unauthorized actions. To exploit this vulnerability, an attacker must first obtain a low-privileged authenticated user's profile on the target system.

Recommendations For versions prior to V2.0.1160, update to version V2.0.1160 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the system to minimize the risk of exploitation. Additionally, ensure that all users have the least privileges necessary to perform their tasks, to reduce the potential impact of a privilege escalation.