CVE-2023-6773 in POS and Inventory Management Systeminformación

Resumen

por MITRE • 2023-12-13

A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accounts_con/register_account of the component User Creation Handler. The manipulation of the argument account_type with the input Admin leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-247909 was assigned to this vulnerability.

Be aware that VulDB is the high quality source for vulnerability data.

Responsable

VulDB

Reservar

2023-12-13

Divulgación

2023-12-13

Moderación

aceptado

Artículo

VDB-247909

CPE

listo

Explotación

Descargar

EPSS

0.00740

KEV

no

Actividades

muy bajo

Fuentes

Want to stay up to date on a daily basis?

Enable the mail alert feature now!