CVE-2023-6483

Name of the Vulnerable Software and Affected Versions ADiTaaS version 5.1

Description A vulnerability exists in the ADiTaaS backend API due to improper authentication. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable platform. Successful exploitation could allow the attacker to gain full access to the customers’ data and completely compromise the targeted platform.

Recommendations For ADiTaaS version 5.1, as a temporary workaround, consider restricting access to the backend API until a patch is available. Avoid using the vulnerable API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.