VYPR

PowerBPM

by Status

CVEs (1)

  • CVE-2023-25780MedJun 2, 2023
    risk 0.37cvss 5.7epss 0.00

    It is identified a vulnerability of insufficient authentication in an important specific function of Status PowerBPM. A LAN attacker with normal user privilege can exploit this vulnerability to modify substitute agent to arbitrary users, resulting in serious consequence.