CVE-2023-41264 | Netwrix Usercube prior 6.0.215 API improper authentication

Posted by Angelo Barbosa | Nov 28, 2023 | CVE

A vulnerability, which was classified as critical, has been found in Netwrix Usercube. Affected by this issue is some unknown functionality of the component API. The manipulation of the argument restSettings.AuthorizedClientId/restSettings.AuthorizedSecret leads to improper authentication.

This vulnerability is handled as CVE-2023-41264. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-41264 | Netwrix Usercube prior 6.0.215 API improper authentication

Related Posts

CVE-2024-0993 | Tenda i6 1.0.0.9(3857) httpd /goform/WifiMacFilterGet formWifiMacFilterGet index stack-based overflow

CVE-2024-2140 | Ultimate Addons for Beaver Builder Plugin up to 1.5.7 on WordPress Advanced Icons Widget cross site scripting

CVE-2024-24134 | SourceCodester Online Food Menu 1.0 Update Menu Section Menu Name/Description cross site scripting

CVE-2024-24827 | Discourse up to 3.2.0 /uploads resource consumption