CVE-2023-1537

Name of the Vulnerable Software and Affected Versions answerdev/answer versions prior to 1.0.6

Description The issue is related to Authentication Bypass by Capture-replay. This allows unauthorized access by reusing captured authentication data. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For versions prior to 1.0.6, update to version 1.0.6 or later to resolve the issue. As a temporary workaround, consider implementing additional authentication measures to minimize the risk of exploitation. Restrict access to sensitive areas of the application to minimize the risk of unauthorized access until the issue is resolved.