CVE-2023-4816

Name of the Vulnerable Software and Affected Versions Asset Suite EAM versions (affected versions not specified)

Description A vulnerability exists in the Equipment Tag Out authentication when configured with Single Sign-On (SSO) and password validation. This issue allows an authenticated user to perform an Equipment Tag Out holder action for another user by entering an arbitrary password in the holder action confirmation dialog box, which the system will then execute despite the incorrect password.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.