CVE-2024-57336

Name of the Vulnerable Software and Affected Versions M2Soft CROWNIX Report & ERS versions 7.x through 7.4.3.599 M2Soft CROWNIX Report & ERS versions 8.x through 8.0.3.79

Description The issue is related to incorrect access control, allowing unauthorized attackers to obtain Administrator account access.

Recommendations For versions 7.x through 7.4.3.599, update to a version later than 7.4.3.599 to resolve the issue. For versions 8.x through 8.0.3.79, update to a version later than 8.0.3.79 to resolve the issue. As a temporary workaround, consider restricting access to Administrator accounts until a patch is available.