CVE-2023-38055 | easyappointments up to 1.4.x /services/{serviceId} authorization

Inserito da Angelo Barbosa | Lug 9, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in easyappointments up to 1.4.x. This issue affects some unknown processing of the file /services/{serviceId}. The manipulation leads to authorization bypass.

The identification of this vulnerability is CVE-2023-38055. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38055 | easyappointments up to 1.4.x /services/{serviceId} authorization

Post correlati

CVE-2023-1419 | Debezium prior 2.3.0.Alpha1 connector injection

CVE-2024-29508 | Artifex Ghostscript up to 10.0.2.x BaseFont Name pdf_base_font_alloc heap-based overflow

CVE-2024-3275 | eRoom Plugin up to 1.4.18 on WordPress authorization

CVE-2024-6791 | NI VeriStand up to 24.2 vsmodel Loader path traversal