PT-2024-13843 · Wallix · Wallix Access Manager+1
Published
2024-01-08
·
Updated
2024-01-12
·
CVE-2023-49961
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
WALLIX Bastion versions 7.x through 10.x
WALLIX Access Manager versions 3.x through 4.x
Description
The issue is related to Incorrect Access Control, which can lead to sensitive data exposure.
Recommendations
For WALLIX Bastion versions 7.x through 10.x, update to a version that includes the fix for the Incorrect Access Control issue.
For WALLIX Access Manager versions 3.x through 4.x, update to a version that includes the fix for the Incorrect Access Control issue.
As a temporary workaround, consider restricting access to sensitive data until a patch is available.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wallix Access Manager
Wallix Bastion