Security Advisory

CVE-2023-48253

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-10 13:02:19

Last updated 2025-06-17 20:59:13

Assigner bosch

State PUBLISHED

Description

The vulnerability allows a remote authenticated attacker to read or update arbitrary content of the authentication database via a crafted HTTP request. By abusing this vulnerability it is possible to exfiltrate other users’ password hashes or update them with arbitrary values and access their accounts.

← Browse all CVEs View on cve.org ↗