Privilege Escalation in SmartBear Zephyr Enterprise Affects User Account Security
CVE-2023-22891

8.1HIGH

Key Information:

Vendor: Smartbear
Status: Zephyr Enterprise
Vendor: CVE Published:; 8 March 2023

What is CVE-2023-22891?

A privilege escalation vulnerability exists within SmartBear Zephyr Enterprise versions up to 7.15.0. This flaw allows authorized users to reset passwords for other user accounts, potentially compromising the security of sensitive information and user access controls. Organizations using this software should be aware of the risks and take immediate steps to address this vulnerability to protect their user accounts and maintain security integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://smartbear.com/security/cve/

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 8, 2023
Vulnerability Reserved
Jan 10, 2023

JSON

Smartbear

What is CVE-2023-22891?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.