Vulnerabilities > CVE-2023-41363 - Unspecified vulnerability in Cerebrate-Project Cerebrate 1.14

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
cerebrate-project
NVD
Published: 2023-08-29
Updated: 2023-08-31

Summary

In Cerebrate 1.14, a vulnerability in UserSettingsController allows authenticated users to change user settings of other users.

Vulnerable Configurations

Part Description Count
Application
Cerebrate-Project
1

References