CVE-2023-48758

Name of the Vulnerable Software and Affected Versions Crocoblock JetEngine versions 3.2.4 and earlier

Description A Missing Authorization vulnerability is present in Crocoblock JetEngine, allowing attackers to exploit incorrectly configured access control security levels. This issue enables unauthorized access exploitation.

Recommendations For versions 3.2.4 and earlier, update to a version later than 3.2.4 to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of JetEngine to minimize the risk of exploitation.