CVE-2023-47832

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions SearchIQ versions prior to 4.4

Description The issue is related to a Missing Authorization vulnerability in SearchIQ, which allows exploitation due to incorrectly configured access control security levels.

Recommendations For versions prior to 4.4, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to sensitive areas of SearchIQ to minimize the risk of exploitation.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2023-47832

Affected Products

Searchiq

CVE-2023-47832

Weakness Enumeration

Related Identifiers

Affected Products

References · 5