CVE-2023-23568

Name of the Vulnerable Software and Affected Versions Command Centre versions vEL8.40 and prior Command Centre version vEL8.50 prior to vEL8.50.2831 (MR8) Command Centre version vEL8.60 prior to vEL8.60.2347 (MR6) Command Centre version vEL8.70 prior to vEL8.70.2185 (MR4) Command Centre version vEL8.80 prior to vEL8.80.1192 (MR2) Command Centre version vEL8.90 prior to vEL8.90.1318 (MR1)

Description Improper privilege validation in Command Centre Server allows authenticated unprivileged operators to modify and view Personal Data Fields.

Recommendations For version vEL8.40 and prior, update to a version later than vEL8.40. For version vEL8.50 prior to vEL8.50.2831 (MR8), update to vEL8.50.2831 (MR8) or later. For version vEL8.60 prior to vEL8.60.2347 (MR6), update to vEL8.60.2347 (MR6) or later. For version vEL8.70 prior to vEL8.70.2185 (MR4), update to vEL8.70.2185 (MR4) or later. For version vEL8.80 prior to vEL8.80.1192 (MR2), update to vEL8.80.1192 (MR2) or later. For version vEL8.90 prior to vEL8.90.1318 (MR1), update to vEL8.90.1318 (MR1) or later.