Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2023-05-11	CVE-2023-31445	Incorrect Permission Assignment for Critical Resource vulnerability in Cassianetworks Access Controller 2.0.1 Cassia Access controller before 2.1.1.2203171453, was discovered to have a unprivileged -information disclosure vulnerability that allows read-only users have the ability to enumerate all other users and discover e-mail addresses, phone numbers, and privileges of all other users. network low complexity cassianetworks CWE-732	5.3