CVE-2023-38053

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description A BOLA vulnerability in GET, PUT, DELETE "/settings/{settingName}" allows a low privileged user to fetch, modify or delete the settings of any user, including admin. This results in unauthorized access and unauthorized data manipulation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.