CVE-2023-4095

Name of the Vulnerable Software and Affected Versions Arconte Áurea version 1.5.0.0

Description The issue allows an attacker to obtain a list of registered users in the application, which could be used to perform more complex attacks on the platform. This is a user enumeration vulnerability, where an attacker can exploit it to gain necessary information about the users.

Recommendations For Arconte Áurea version 1.5.0.0, consider restricting access to user registration information as a temporary workaround until a patch is available. Avoid using any functionality that may reveal user enumeration data to unauthorized parties. At the moment, there is no information about a newer version that contains a fix for this vulnerability.