Missing Authorization vulnerability Affects Uncode Core
CVE-2023-51500
7.7HIGH
Summary
A missing authorization vulnerability exists in Undsgn Uncode Core, which allows unauthorized users to exploit the application. This flaw can lead to serious security implications, enabling potential attackers to manipulate the application's functionality without proper authorization. The affected version spans from n/a to 2.8.8, requiring immediate attention and patching to mitigate risks associated with unauthorized access.
Affected Version(s)
Uncode Core <= 2.8.8
References
CVSS V3.1
Score:
7.7
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Rafie Muhammad (Patchstack)