Security Advisory

CVE-2023-25780

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-02 00:00:00

Last updated 2025-01-08 18:01:59

Assigner twcert

State PUBLISHED

Description

It is identified a vulnerability of insufficient authentication in an important specific function of Status PowerBPM. A LAN attacker with normal user privilege can exploit this vulnerability to modify substitute agent to arbitrary users, resulting in serious consequence.

← Browse all CVEs View on cve.org ↗