CVE-2023-32316

Name of the Vulnerable Software and Affected Versions CloudExplorer Lite versions prior to 1.1.0

Description The issue is related to a missing permission check on the user profile in CloudExplorer Lite, an open source cloud management tool. This allows users to add themselves to any organization. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For versions prior to 1.1.0, upgrade to version 1.1.0 to resolve the issue. As a temporary workaround, consider restricting access to the user profile management functionality until the upgrade is applied.