Medium severity5.7NVD Advisory· Published Jun 2, 2023· Updated Jun 17, 2026
CVE-2023-25780
CVE-2023-25780
Description
It is identified a vulnerability of insufficient authentication in an important specific function of Status PowerBPM. A LAN attacker with normal user privilege can exploit this vulnerability to modify substitute agent to arbitrary users, resulting in serious consequence.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Status Internet Co.,Ltd./PowerBPMv5Range: 2.0
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-7152-d7f5b-1.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.