CVE-2023-27195 | Trimble TM4Web 22.2.0 Registration tm_ajax.msw access control

Inserito da Angelo Barbosa | Apr 14, 2024 | CVE

A vulnerability was found in Trimble TM4Web 22.2.0. It has been classified as critical. Affected is an unknown function of the file /inc/tm_ajax.msw?func=UserfromUUID&uuid= of the component Registration. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2023-27195. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-27195 | Trimble TM4Web 22.2.0 Registration tm_ajax.msw access control

Post correlati

CVE-2024-41044 | Linux Kernel up to 6.9.9 ppp_async_encode Privilege Escalation

CVE-2023-6967 | Pods Plugin on WordPress Shortcode sql injection

CVE-2024-0599 | Jspxcms 10.2.0 Document Management Page InfoController.java title cross site scripting

CVE-2024-29415 | ip Package up to 2.0.1/012.1.2.3/127.0.0.1/127.1 on Node.js server-side request forgery (ID 150)