CVE-2023-3305

Name of the Vulnerable Software and Affected Versions C-DATA Web Management System up to 20230607

Description A critical issue affects the User Creation Handler component of the C-DATA Web Management System, specifically the file /cgi-bin/jumpto.php?class=user&page=config save&isphp=1. The manipulation of the user/newpassword argument leads to improper access controls, allowing remote attackers to potentially elevate their privileges by creating a new user. The exploit has been publicly disclosed.

Recommendations As a temporary workaround, consider restricting access to the /cgi-bin/jumpto.php?class=user&page=config save&isphp=1 endpoint until a patch is available. Avoid using the user/newpassword argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.