PT-2023-29400 · Unknown · Hypercloud
Published
2023-12-05
·
Updated
2023-12-12
·
CVE-2023-45083
CVSS v3.1
4.4
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
HyperCloud versions 1.0 through 2.0
Description
An Improper Privilege Management issue exists that impacts user authentication against the management plane. An authenticated admin-level user may be able to delete the
admin or serveradmin users, preventing subsequent authentication attempts from succeeding.Recommendations
For HyperCloud versions 1.0 through 2.0, update to version 2.1 or later to resolve the issue.
As a temporary workaround, consider restricting the ability of admin-level users to delete the
admin or serveradmin users until a patch is available.Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hypercloud