CVE-2024-37123

Name of the Vulnerable Software and Affected Versions VowelWeb Ibtana versions 1.2.3.3 and earlier

Description The issue is related to a Missing Authorization vulnerability, allowing the exploitation of incorrectly configured access control security levels. This vulnerability can be exploited due to missing authorization in VowelWeb Ibtana, which affects the access control security levels.

Recommendations For versions 1.2.3.3 and earlier, consider restricting access to sensitive areas of the application to minimize the risk of exploitation until a patch is available. As a temporary workaround, review and correct the configuration of access control security levels to ensure proper authorization is in place.