Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned.

Description: A security issue allows a member with the EDIT PERMISSIONS permission and access to the "Security" section to escalate their privileges to ADMIN level by re-assigning themselves or another member. This is possible due to the construction of CMS Fields for the member using DirectGroups instead of the Groups relation, which bypasses the security logic intended to prevent privilege escalation.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.