Vulnerabilities > Qsige > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-10-03 CVE-2023-4099 Authorization Bypass Through User-Controlled Key vulnerability in Qsige 3.0.0.0
The QSige Monitor application does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so.
network
low complexity
qsige CWE-639
6.5
6.5
2023-10-03 CVE-2023-4101 Authorization Bypass Through User-Controlled Key vulnerability in Qsige 3.0.0.0
The QSige login SSO does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so.
network
low complexity
qsige CWE-639
6.5
6.5