VYPR
Unrated severityNVD Advisory· Published Aug 3, 2023· Updated Oct 17, 2024

HCL Unica Platform is vulnerable to a privilege escalation by unauthorized group assignation

CVE-2023-37498

Description

A user is capable of assigning him/herself to arbitrary groups by reusing a POST request issued by an administrator.  It is possible that an attacker could potentially escalate their privileges.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.