High severity8.5OSV Advisory· Published Jul 9, 2024· Updated Jun 17, 2026
CVE-2023-3288
CVE-2023-3288
Description
A BOLA vulnerability in POST /providers allows a low privileged user to create a privileged user (provider) in the system. This results in privilege escalation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.1.0, 1.1.0-beta.2, 1.2.0-alpha.1, …
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.